Create a Post
cancel
Showing results for 
Search instead for 
Did you mean: 
Paul_Warnagiris
Collaborator

Does Check Point have a response to the Solarwinds compromise as of yet?

0 Kudos
Reply
3 Replies
_Val_
Admin
Admin

AFAIK, the all publicly available IOCs are inserted to the ThreatCloud. All Check Point customers with NGTX enabled can benefit from that already.

We are working on the official response, please stand by.

schwilj
Explorer

What about customers using Sandblast Advanced Endpoint Protection? Will then Anti-Bot, Anti-Ransomware, Threat Emulation blades or any other blades be able to detect the malicious dll files or other IOC?

0 Kudos
Reply
PhoneBoy
Admin
Admin

As of this moment, there is a protection in Anti-Virus for this, with Anti-Bot and Threat Emulation protections coming shortly.
SBA uses the same ThreatCloud as our gateway and can leverage the same protections.
Official response: https://supportcenter.checkpoint.com/supportcenter/portal?eventSubmit_doGoviewsolutiondetails=&solut...

0 Kudos
Reply