News
Check Point has launched a new Threat Emulation Software Blade
February 2013 by Marc Jacob
Check Point has launched a new Threat Emulation Software Blade that prevents infections from undiscovered exploits, zero-day and targeted attacks. This innovative solution quickly inspects suspicious files, emulates how they run to discover malicious behaviour and completely prevents malware from entering the network.
Check Point Threat Emulation also immediately reports new threats to Check Point’s ThreatCloud service and automatically shares the newly identified threats with other customers.
Cybercriminals use a variety of new and evolving techniques to avoid detection – in fact, an average of 70,000 to 100,000 new malware samples are created and distributed every day. Traditional solutions have focused on detection, providing notifications after a threat has breached the network. Threat Emulation blocks new threats so that infection does not occur. When no infection occurs, the time, effort, and headaches for infection remediation are eliminated.
Check Point Threat Emulation prevents threats by vetting downloaded files and common email attachments such as Adobe PDFs and Microsoft Office files. Suspicious files are opened inside the Threat Emulation sandbox and are simultaneously monitored for unusual system behaviour, including abnormal system registry changes, network connections or system processes – providing real-time assessment of the file’s behaviour. If files are found to be malicious they are blocked inline at the gateway.
Newly discovered signatures are immediately shared with Check Point ThreatCloud and distributed to subscribed gateways for automatic protection against the new malware.
Check Point Threat Emulation is an integral part of Check Point’s leading multi-layered Threat Prevention solution. This complementary suite of Check Point Software blades includes: IPS Software Blade that stops exploits of known vulnerabilities, the Anti-Bot Software Blade that detects and prevents bot damage, and the Antivirus Software Blade that blocks downloads of malware infested files.
Check Point Threat Emulation provides customers with flexible deployment options within either dedicated appliances or through cloud-based service. Emulation and reporting can be managed using Check Point’s management console from any gateway, with local device management available for dedicated appliances.
The new solution will be available in Q2 of this year.
