Product Announcements - Page 38

Hi all,

We are happy to announce that R81, part of the Check Point Infinity architecture, has been released!

With 81 new features, R81, is imperative for putting our network security on the fast track, providing most advanced Threat Prevention and security management software that delivers uncompromising simplicity and consolidation across the enterprise.

Whether it is deploying the latest technologies and security to protect the organization or expertly crafting security policies, R81 new features include: Infinity Threat Prevention, the industry’s first autonomous Threat Prevention system that provides fast, self-driven policy creation and one-click security profiles keeping policies always up-to-date. Policies are installed in seconds, upgrades require only one click and gateways can be simultaneously upgraded in minutes.

R81 further features secure connectivity for encrypted traffic utilizing the latest standards including TLS 1.3 and HTTP/2.

In addition, the Scalable Platform software is now aligned with the R81 Cyber Security Platform bringing feature parity to CheckPoint Maestro

This release is initially recommended for customers who are interested in implementing the new features.

We will make it the default version after significant adoption. It will then be available in the 'Showing Recommended Packages' section in the CPUSE tab in Gaia portal. Until then the Check Point's  default version is R80.40.

For “What’s New”, Release Notes and more information, please refer to R81 Homepage [sk166715].

We’ll be monitoring the adoption of the release closely as well as any issues that may arise. Please feel free to reach out to us with any feedback or questions.

Best Regards,

Release Management group

Hi All

A new GA SmartConsole (Build #94) for R80.30 was released today  (Replacing build #92) and is available for download.

For more info please refer to sk153153

Thanks,

Release  Management groups

Hi All

A new Ongoing Jumbo Hotfix Accumulator take for R80.30 (take 221) was released today,  and is available for download. Please refer to sk153152

Please note the following:

•        The new release is mentioned in  sk153152
•        The new releases will be published via CPUSE as a recommended version once it will be published as GA.
•        Availability:

o   Available to download the via sk153152

o   Available for download via CPUSE by using package identifier.

o   Can be provided by customer support

Content included in this take:

• List of resolved issue in this take can be found in sk153152

ATAM, Advanced Technical Account Management at Check Point Software invite you virtually, October 20th to introduce new features for R81 and perform the following tasks:

• Central Deployment Tool in SmartConsole
• Revisions with Differential Reporting
• NAT Policy Improvements
• Cross Domain Search
• Spike Detector
• Log Exporter UI

Speakers:

@Matt Lobban - Advanced Technical Account Manager

Hi All,

R80.30 Jumbo HF Take #219 is now our GA take (replacing take 217) and is available for download to all via CPUSE (as recommended) and via sk153152

Release Highlight:

•       Stability fixes

Full list of resolved issues can be found in sk153152.

Thanks,

Release Management groups

Hi All

A new Ongoing Jumbo Hotfix Accumulator take for R80.30 (take 219) was released today,  and is available for download. Please refer to sk153152

Please note the following:

•        The new release is mentioned in  sk153152
•        The new releases will be published via CPUSE as a recommended version once it will be published as GA.
•        Availability:

o   Available to download the via sk153152

o   Available for download via CPUSE by using package identifier.

o   Can be provided by customer support

Content included in this take:

• List of resolved issue in this take can be found in sk153152

Hi All,

R80.30 Jumbo HF Take #217 is now our GA take (replacing take 215) and is available for download to all via CPUSE (as recommended) and via sk153152

Release Highlight:

•       Stability fixes

Full list of resolved issues can be found in sk153152.

Thanks,

Release Management groups

Hi all,

We are happy to announce the release of Endpoint Security Client E83.20.

The complete list of improvements can be found in the version release’s Secure Knowledge sk168081.

But here are the most exciting ones…

New windows support

E83.20 has full support (all blades and packages) for Windows 10 20H1 (version 2004)

Browser Extension support Microsoft Edge (Chromium) & Chrome for Mac

SandBlast Agent Browser Extension now supports Microsoft Edge (Chromium) and Chrome for Mac with the following capabilities:

• URL Filtering (WebUI only)
• File Download Protection
• Credential Theft protection including Zero-Phishing and Corporate-password-reuse protection

The extension is installed automatically together with the new version

Supported & Next To Come:

E83.20 for macOS

The version supports the following capabilities:

• Anti-Malware blade is now GA
• URL Filtering with SandBlast Agent Chrome Browser Extension
• Advanced VPN features are now also available on Mac:
• Multiple Factor Authentication
• Multiple Entry Point
• Implicit Mode
• Secondary Connect

Follow sk166955 for more information on the E83.20 release for macOS.

New advanced protections

• "Pass The Hash" detection in Behavioral Guard has been enhanced, to recognize more “Pass The Hash” attempts.
  Pass The Hash is used by an attacker to do remote authentication by utilizing the hash of an account password. In other words, the attacker does not need the actual plaintext password.
  This technique in essence allows for lateral movement in an organization.
• Improved malicious LNK files detection
  Behavioral Guard was enhanced, to detect malicious LNK files (windows shortcut / direct link to a file). It analyzes the target of a LNK file to determine if the LNK file itself is malicious.
  LNK files are mostly though not exclusively utilized maliciously to start LOLBins (Living Off The Land Binaries) like Windows OS executables. Some common targets for malicious LNK files include CMD, powershell, and wscript.

In addition, the Forensics Analysis now can determine whether the attack originated from an LNK file and the Forensics Report shows the targets of all LNK files in an incident.

Content view in the Forensics report

The Forensics Report now has been enhanced to show all AMSI content and LNK targets in a new single view called the Content View. This view is accessible under the Incident Details Menu option

Full Disk Encryption – pre-boot screen

The Full Disk Encryption pre–boot has a modernized look and feel along with updates to the color-theme and background images.

Stay safe,

Guy A.