Veracity to showcase expanded portfolio at Inters... » Prestwick: Veracity reflects its significant growth in the Middle East by announcing an enlarged com... IPSecurityCenter to help protect citizens at the... » CNL Software has announced that its award-winning technology will be utilized as part of the multi-a... Pulse Secure certified for U.S. Department of Defe... » SAN JOSE, CALIF: Pulse Secure has announced that Pulse Connect Secure 8.2 and Pulse Policy Secure 5.... ExtraHop predicts 2017 trends in IT, security an... » UK: ExtraHop has announced its top predictions for enterprise IT in 2017. Based on insight from cust... VTech takeover: Snom stays Snom » Berlin: Now being part of VTech, leading manufacturer of professional business IP phones, Snom Techn... Secure I.T. Environments delivers challenging Da... » London UK: Secure I.T. Environments Ltd has announced the completion of a new internal data centre f... TDSi’s new GARDiS range grabbed visitors' attent... » Poole: Integrated security manufacturer TDSi’s new range of GARDiS software was the star attraction ... Use of Excel spreadsheets for business critical pr... » London, U.K: Findings of a new survey by ClusterSeven reveals that EUC risk is widely recognised by ... BeyondTrust and Westcon-Comstor expand global dist... » PHOENIX AND TARRYTOWN, N.Y: BeyondTrust and Westcon-Comstor recently announced the leading security ... Thoughtonomy achieves ISO 27001 certification » Thoughtonomy has achieved certification to the International Organisation for Standardization’s ISO ...

CLICK HERE TO

Advertise with Vigilance

Got News?

Got news for Vigilance?

Have you got news/articles for us? We welcome news stories and articles from security experts, intelligence analysts, industry players, security correspondents in the main stream media and our numerous readers across the globe.

READ MORE

Subscribe to Vigilance Weekly

Information Security Header

Check Point has announced that its network security products offer multiple protections against the Heartbleed vulnerability, ensuring the security of customers’ clients, servers and the integrity of their network data. Check Point network security products are not susceptible to Heartbleed exploits as the company utilizes a non-vulnerable version of OpenSSL. The company also provided multiple protections against attacks leveraging the Heartbleed bug that include:

- Check Point’s implementation of HTTPS inspection that automatically prevents Heartbleed traffic. This was first introduced in 2011 with R75.20.

- Check Point released IPS protections to detect and block exploits from Heartbleed, on April 9, 2014.

“The Heartbleed vulnerability is a critical and far-reaching security threat that potentially exposes sensitive personal and business information to remote hackers. Check Point’s products provide multiple elements of protection against Heartbleed. First, our network security products are not vulnerable to this threat as Check Point uses a non-vulnerable version of OpenSSL. Second, our HTTPS inspection inherently prevents Heartbleed traffic. Finally, our timely IPS protection will detect and block attempts to exploit this vulnerability,” said Dorit Dor, vice president of products at Check Point Software Technologies

Heartbleed.com describes the vulnerability as: “The Heartbleed Bug is a serious vulnerability in the popular OpenSSL cryptographic software library … The Heartbleed bug allows anyone on the Internet to read the memory of the systems protected by the vulnerable versions of the OpenSSL software. This compromises the secret keys used to identify the service providers and to encrypt the traffic, the names and passwords of the users and the actual content. This allows attackers to eavesdrop on communications, steal data directly from the services and users and to impersonate services and users.”

“The Heartbleed vulnerability is so worrisome because of the pervasive use of OpenSSL and the fact that consumers often do not employ password best-practices, opening themselves to credential theft. Further, enterprises need to worry not only about the loss of customer account information, but also the compromise of employee credentials, as well as the exploitation of vulnerable network devices utilizing OpenSSL,” said John Grady, research manager of security products and services at IDC.

“The Heartbleed bug is a serious security threat affecting a wide range of IT operations around the world. While it continues to be a major concern for many businesses, Hotel Nikko is safeguarded by Check Point’s leading Intrusion Prevention System (IPS) and its other network security solutions. We are pleased with Check Point’s immediate protection and I’m confident in the security that Check Point provides for our network,” said Manuel Ruiz, IT director at Hotel Nikko San Francisco