This website uses Cookies. Click Accept to agree to our website's cookie use as described in our Privacy Policy. Click Preferences to customize your cookie settings.
Accept
Reject
Preferences
ABOUT CHECKMATES CYBER SECURITY COMMUNITY & FAQ
Create a Post
Help
cancel
Turn on suggestions
Showing results for 
Search instead for 
Did you mean: 

Are you a member of CheckMates?

×
Sign in with your Check Point UserCenter/PartnerMap account to access more great content and get a chance to win some Apple AirPods! If you don't have an account, create one now for free!
Olga_Botero
Explorer
‎2018-11-01 04:07 AM

High Risk Applications

Can someone explain why Checkpoint flags an application as High Risk?

For example, Dashlane is a password manager with the highest rating found in PC Magazine and other Password Manager ratings give it a 9.9. Back in February 2017, they discover flaws in the password managers but these were fixed by the vendors. Could it be that the rating is due to these findings almost 2 years ago? (9 Popular Password Manager Apps Found Leaking Your Secrets ) 

Labels
0 Kudos
5 Replies
_Val_
Admin
Admin
‎2018-11-01 05:48 AM

You can always submit a re-classification request, if you see a need. 

0 Kudos
Aidan_Luby1
Participant
‎2018-11-01 05:50 AM

I think high risk could also imply the type of application that while used and supported by high staff is not high risk but could be high risk when used without the IT Departments permission.

0 Kudos
Olga_Botero
Explorer
‎2018-11-01 06:11 AM

Thank you for your comments. I am trying another password manager BLUR and never got any high-risk messages.

I attribute that to the fact that Blur has never been hacked therefore there are no statistics on security issues with the app. Adam, your comment is very helpful and I am going to explain that to the manager, also Valery, you are right, I can submit a reclass for the product if we decide to use it.

0 Kudos
ED
Advisor
‎2018-11-02 05:28 AM

Hi Olga,

You can check the risk level and category on this CP site: https://appwiki.checkpoint.com/appwikisdb/public.htm

Dashlane is under category browser plugin, making it extra vulnerable. Just like LastPass. Both with risk high (4). So it looks like all password managers that works as a browser plugin is marked as high risk. BLUR is not on the list of Check Point AppWiki. 

For IPS protections, to get the severity of high this is required:

  • Vulnerability may lead to non-privileged remote code execution 
  • Vulnerability may affect important company assets 
  • Vulnerability can be easily exploited
  • The vulnerable software is significantly deployed in corporate environments
0 Kudos
PhoneBoy
Admin
Admin
‎2018-11-02 08:33 AM

Password Managers are in general considered a high-risk application for the following reason: They can be used to store organizational credentials in a repository not controlled by the organization.

If your organizations trusts a particular one, then explicitly allow it in the App Control policy.

It is currently not possible to reclassify the risk of a given application.

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

View All ≫
Upcoming Events

    Sort by:
    CheckMates Events
    Top