Showing results for 
Search instead for 
Did you mean: 
Post a Question
inside SandBlast Mobile Sunday
views 579 2 3

White Paper - Healthcare: Mobile Security

Author @Ed_Gonzalez Abstract: Protection for mobile devices that have patient care applications requires a modern solution to prevent an attack. Providing continuous enhancements to the product is also essential because of the rapid nature of modern cyber-attacks. It needs to evolve over time to incorporate new features yet remain flexible to manage. Check Point offers a unique product in Sandblast Mobile (SBM) to meet the specific requirements (HIPPA) for the healthcare industry and protects mobile devices from next generation cyber-attacks. It is built with the latest, cutting-edge technology in the industry for both Android and Apple devices delivering on network, OS and application layer protection. It offers a 100% cloud infrastructure. With this architecture healthcare IT teams are able to onboard customers faster. Organizations with existing MDM / EMM solutions are able to integrate with SBM for easy deployment. Thus, enhancing their security posture withoutdisrupting the current on premise protection. With a built-in Check Point VPN there is no disruption to hospital workflows. An incident will automatically trigger the system by directing traffic to a secure path. Therefore, it does not disrupt the patient experience. It also provides protection on phishing SMS attacks on all applications. Additionally, it delivers granular policy segmentation to protect various satellites sites and hospitals under the organization. This allows easier management over the course of time. Distributed patient devices are also protected with location tracking and safe browsing to meet the organization’s standards.
Jan_Kurdik inside SandBlast Mobile Saturday
views 44 1

Sandblast Mobile removed malwares

Hello All,Does anybody know what Malware Removed in My Apps view means and how can i find more information/logs about that?There are currenty ten removed Malwares on my Android phone as you can see in attached file, but no events in Sandblast Mobile Dashboard.I have check Sandblast Mobile Documents also, but i did not find anything.Best Regards,Jan
HS inside SandBlast Mobile Friday
views 484 1

Check Point SandBlast Mobile 3.4

Hi,Anyone has a documentation about the SandBlast Mobile 3.4 release.Are the Client affect with this relase ? It's necessary to deploy sandblast mobile to endpoints?Thank you very much for your help.
Happy__ inside SandBlast Mobile 2 weeks ago
views 507 3

Unable to upload CWS saved file to file shared folder

I try to upload the saved file to the shared folder but I faced an issue:-Error: Insufficient permission to move uploaded "Array" file.
threeTsubasa inside SandBlast Mobile 4 weeks ago
views 2190 9


Hi guys,Summary########Installed SBM on three different iOS (12.2) devices (iphone and ipad)but cannot activate the ONP on them ."NetworkProtection" is not shown when installing SBM or when enabling it from the dashboard.ReferenceUrl => [ ]License: EvaluationLicense [ CP-MTP-EVAL-CONTRACT ]Any ideas?Thanks.
inside SandBlast Mobile 2019-04-20
views 1718 7 9

How can I import devices to SandBlast Mobile Dashboard?

I don't have MDM/EMM, and I would like to import a list of 35 devices to SandBlast Mobile Dashboard. How can I do that? Yuval Sered​ Oded Yarkoni​ Ricardo Panez​
Pedro_Marques inside SandBlast Mobile 2019-04-16
views 1540 1

Import devices on Sandblast Mobile error

Hi, I'm having trouble importing devices to Sandblast Mobile, created CSV file like it's is asked but still receive the error in the screenshot bellow. Can anyone send some template so i can find what i'm doing wrong ?
Dor_Marcovitch inside SandBlast Mobile 2019-04-11
views 2416 6

Reverse Proxy Feature of MOB (R80.10)

i am trying to figure out how the Reverse Proxy works "under the hood".the only information is from sk110348.If my MOB Portal is on: have an ActiveSync application for our mobile phones on the FQDN: I configure my Outlook Anywhere clients which ar using RPC over HTTP to use the URL: What I have seen is that ActiveSync Traffic have stopped working and also the MOB portal which was also available on was not available any more, and any request was forwarded to my backend server (as expected I belive) I had some research and the RPC over HTTP is using the “/rpc/” so have tried to configure the Outlook Anywhere Rule on the Reverse Proxy setting to have the allowed path to be “/rpc/” , now what I got is :outlook client is workingActive sync client not workingMOB Portal on is not working (but I don’t really need it on this URL (I have for it)Any traffic that is not in the “/rpc/” path I get “403 Forbidden”So I don’t understand:how and which component device which path belongs to MOB and which belongs to Reverse Proxy?Can MOB and Reverse Proxy listen to the same FQDNS and Port but on different paths?Can Reverse Proxy feature do it’s “thing” only for specific path or the allow path is only used for blocking anything else?If so than my conclusion is that if I decide to use Reverse Proxy for anything for that FQDN and Port will go to the Reverse Proxy feature.Additional information that is missing me is what blades are able to "scan" the traffic that is proxied on the FW ?
sujit inside SandBlast Mobile 2019-04-02
views 1739 4 1

Required application(s) not found: Require CheckPoint/Sandblast Protect iOS :com.checkpoint.capsulep

Users are receiving warning mails - "Required application(s) not found: Require CheckPoint/Sandblast Protect iOS :com.checkpoint.capsuleprotect".any help is appreciate.thanks in advance
MattDunn inside SandBlast Mobile 2019-03-26
views 798

Sandblast Mobile Device Events Query

Hi all,I have some questions regarding Sandblast Mobile. I presume I'm missing something as there appears at the moment to be some disconnects within the WebUI. For example, in the Events & Alerts tab I have a list of stuff, but using the below example I have a few "Warning" events for non-compliant devices. How do I tell which devices it's moaning about?? There appears to be no way to know? On the flip side of that, in the Device Risk tab I can see that one device has 6 Medium Risk things wrong, but with the filters set to All, it doesn't show any risks. How do I know what the 6 risks on that device are? And finally on a related note, in the App Analysis tab, I see for example that Dropbox is installed on 2 devices, but I can't tell which devices they are. How do I match up the apps or events to a particular device? It seems an obvious thing to want to do but it isn't intuitive...Thanks,Matt
inside SandBlast Mobile 2019-03-26
views 636

Rate & Review SandBlast Mobile Protect

Our customers’ opinions are extremely important to us. Over the last year and a half, we've launched several new features within the SandBlast Mobile Protect app to enhance the user experience in addition to all the new security features we have rolled out. We would greatly appreciate it if you went to the Apple App Store or the Google Play Store and gave us a rating as well as a review of the SandBlast Mobile Protect app. This feedback will help us gain valuable insights which will allow us to improve the product.
idhammer inside SandBlast Mobile 2019-03-19
views 1108 4 4

CK for SandBlast Mobile

Hi all,Anyone know how CK for SBM is assigned?Is it different CK for each device, or same CK for one single order?For example, I'm ordering 100 x CP-MTP-DVC-1Y (per device). Will all of them have same or different CK?Thanks in advance.
idhammer inside SandBlast Mobile 2019-03-19
views 683

SBM Service Status

Hi all.In checking CheckPoint Service Status, I am refering to this: can't find SandBlast Mobile there. Anyone know where to look?(Why I need the status: to correspond with SBM's SLA stating the service uptime is equal or greater than 99.99%)URL:
inside SandBlast Mobile 2019-02-28
views 846

February 2019 Release Notes Bulletin

Granular Policies is now GAONP: Full URL prevention over HTTP for malicious sitesONP: FaceTime connectivity issue resolvedONP: Man-in-the-Middle attack prevention (early availability)
inside SandBlast Mobile 2019-02-26
views 578

ONP: Man-in-the-Middle attack prevention (early availability)

On-device Network Protection's MitM protection will now provide prevention, not just detection and a user warning.This feature enables users to keep working securely without requiring them to change networks during Man-in-the-Middle attacks.This feature is available on request. Please contact Check Point Support or your account manager to enable this feature.When a MitM attack is detected, the SandBlast Mobile Protect app will move from the loopback VPN to a remote VPN tunnel terminated in the SandBlast Mobile Cloud so that your traffic is protected within the IPSec VPN tunnel.Once the feature is enabled in the SandBlast Mobile Dashboard, the Administrator can configure MitM Prevention by navigating to Policy > [Policy Profile] > WIFI Network, and turning MITM Attack Prevention ON and setting the Risk Level and Device Alert setting.This topic is related to Network dashboard tab (Man-in-the-middle attacks).