In another important development by Fortinet, they highlight the importance of real time client reputation and scoring as a part of an intelligent network security strategy.
Identifying improper behaviour among the devices connected to their network is a critical tool for any organization concerned about Advanced Persistent Threats (APTs).
In light of the rapidly changing landscape of such targeted malware attacks, Fortinet lists the top five types of behavior that might indicate that a device has been infected. They are :
·Bad Connection Attempts
·Choice of Application
·Geographic Location
·Session Information
·Destination Category