This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
ABOUT CHECKMATES CYBER SECURITY COMMUNITY & FAQ
Create a Post
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Are you a member of CheckMates?

×
Sign in with your Check Point UserCenter/PartnerMap account to access more great content and get a chance to win some Apple AirPods! If you don't have an account, create one now for free!
ccsjnw
Contributor
‎2026-03-19 04:52 AM
Jump to solution

Harmony EndPoint Security Client: Failed to update Anti-Malware Database


We have the Harmony EndPoint Security Client deployed on all Windows desktops, laptops, servers & Domain Controllers.

Version E82.72.2026 is deployed everywhere, except on our Domain Controllers, which have version E89.05 installed.


We are seeing a universal failure (all machines affected) when the clients attempt to update the Anti-Malware Database:

Failed to update Anti-Malware Database

 

At first, I thought this was a symptom of the recent Time problem (due to the wrong interpretation of 2026 being a leap year).
However, the Firewall Manager and all all Security Gateways have now had the Time Fix deployed, and the problem persists.

Machines that are outside of the organisation (not behind the organisation's Security Gateways) are also impacted, and cannot obtain their Anti-Malware updates. We are using Cloud management for our Harmony EndPoint Security implementation.


I'm starting to think that the EndPoint Clients also have their own version of the Time bug...

I can't find any recent SK articles on the the topic.


Is anyone else currently experiencing these failures?

Failed to update Anti-Malware Database.png

EndPoint Logs2.jpg

I don't see any update errors in the logs... 

 

However, DNS results for updates.checkpoint.com seem strange:

Ping.jpg

nslookup.jpg


(The anti-malware signatures are updating correctly on our Security Gateways - it's just the Harmony Security Client that is affected).


If this is currently working normally for you, I'd also be interested to know that too...
(please post what version you have deployed).


Thanks!


@PhoneBoy can this be escalated please? This feels very much like a widespread outage affecting many Check Point customers.

0 Kudos
(1)
1 Solution

Accepted Solutions
fat2
Participant
‎2026-03-19 12:14 PM
In response to PhoneBoy
Jump to solution

I opened a case, I guess they didn't realize it was an issue.....

SR#6-0004547678 failed to update anti-malware database

Hello Frank,

Thank you for your response.

This may be an internal issue as my own client is doing the same and a couple other of my team. our Dev team is investigating this issue. I will update once I have more information.


View solution in original post

(1)
12 Replies
Simon_Moscovitz
Participant
‎2026-03-19 06:44 AM
Jump to solution

same here.. E89.10

ccsjnw
Contributor
‎2026-03-19 08:04 AM
In response to Simon_Moscovitz
Jump to solution

 

That's interesting... I'm hearing from other organisations (that I have no connection with) that they are impacted too, but Check Point are silent...

Problem is currently occurring in the UK and Gulf states (Middle East).

0 Kudos
fat2
Participant
‎2026-03-19 08:27 AM
In response to ccsjnw
Jump to solution

happening for my endpoints.  I'm in US

fat2
Participant
‎2026-03-19 08:03 AM
Jump to solution

same here, 89.10 clients

Paul_Stephenson
Contributor
‎2026-03-19 08:46 AM
Jump to solution

Same here, mostly 88.72 with a few 89.10 for testing.

89.10 seems to instantly fails the update check whereas 88.72 thinks for a bit before saying its failed.

These are internal behind Check Point firewalls, have not been checked in the wild. UK based.

lluner
Advisor
‎2026-03-19 09:52 AM
Jump to solution

. Problem in the XML file. It would be interesting to open a TAC (Technical Assistance Center).

I don't know if it's related to that. https://status.checkpoint.com/

 

erro_updatev2.png

(1)
ccsjnw
Contributor
‎2026-03-19 12:10 PM
In response to lluner
Jump to solution

I know of a British IT consultancy company that has opened a support case.

0 Kudos
PhoneBoy
Admin
Admin
‎2026-03-19 10:15 AM
Jump to solution

If anyone is willing to test this on one of the affected endpoints, try setting the date one day ahead to see if the problem resolves.
That would indicate this issue is the likely reason: https://community.checkpoint.com/t5/Firewall-and-Security-Management/Certificate-and-CRL-validation-...

In any case, I found at least one TAC case related to this issue.
I suggest others experiencing this issue do the same.

(1)
fat2
Participant
‎2026-03-19 12:14 PM
In response to PhoneBoy
Jump to solution

I opened a case, I guess they didn't realize it was an issue.....

SR#6-0004547678 failed to update anti-malware database

Hello Frank,

Thank you for your response.

This may be an internal issue as my own client is doing the same and a couple other of my team. our Dev team is investigating this issue. I will update once I have more information.


(1)
ccsjnw
Contributor
‎2026-03-20 04:59 AM
In response to PhoneBoy
Jump to solution

Thanks for getting this expedited and fixed 🙏

0 Kudos
lluner
Advisor
‎2026-03-20 04:16 AM
Jump to solution

@ccsjnw 

They solved the problem.

2026-03-20_08-16.png

(1)
ccsjnw
Contributor
‎2026-03-20 04:58 AM
In response to lluner
Jump to solution

Yes - working for me this morning 😀

Glad the fix was handled by Check Point remotely, and didn't need any manual intervention.

However, I find it concerning that that nobody within Check Point noticed this was broken until it was flagged up here.
There's definitely room for improvement in quality control & routine testing ...

0 Kudos

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

View All ≫
Upcoming Events

    CheckMates Events