Subject: Security Expert Technical Newsletter - February 2021

 ​February 2021 ​ ​
Hello,

Our February newsletter includes important and useful information about the end of support for R80 and R80.10 coming up in May 2021, new QUANTUM SPARK 1600 and 1800 appliancesEnterprise Endpoint Security E84.40 Windows Clients, and Enterprise Endpoint Security E84.30 macOS Clients.
It also includes R80.20.20 for Small and Medium Business AppliancesR81 SmartConsole Releases, Check Point R81 for Scalable Platforms, and some important fixes such as the Jumbo Hotfix Accumulator for R81, improved R81 CPUSE mechanism, new Tiny Agent and more. 

You can also find SecureKnowledge updates, such as new important articles and our top 5 new solutions. 

Finally, you can find education and training information about the CISO's Secrets Podcast, new WiFi Hacking course and a Jump Start course for SMBs.

I hope you will find this information useful.

Sincerely,
SecureKnowledge Project Manager
Check Point Software Technologies, Ltd.


ANNOUNCEMENTS
R80 and R80.10 End Of Support coming in May 2021

R80 and R80.10 versions will reach their End Of Support in May 2021. If you are using these versions (or earlier) we strongly recommend you begin the process to upgrade your environment.

QUANTUM SPARK 1600 and 1800 Security Appliances

Check Point's QUANTUM SPARK security appliances are high-performance, integrated devices. They offer firewall, VPN, antivirus, application visibility and control, URL filtering, email security, and SandBlast Zero-Day Protection, all in a 1U form factor that is simple to configure and manage.

QUANTUM SPARK 1600 and 1800 are designed for medium size businesses supporting up to 500 employees. As such, they offer strong performance, high port capacity, 10 GbE network interface, and 2.5GbE LAN, all of which make these appliances ideal for larger branch and SMBs.


Enterprise Endpoint Security E84.40 Windows Clients

E84.40 introduces a new technique in Anti-Ransomware that significantly improves the time to detection of many ransomware families. This technique is not based on signatures, and continues to work with all existing methods.
This release also includes many enhancements and stability fixes.

NEW RELEASES, HIGHLIGHTED HOTFIXES AND TOOLS
R80.20.20 for Small and Medium Business Appliances

R80.20.20 for Small and Medium Business Appliances introduces support for the new 1600 and 1800 appliances.
It also includes performance enhancements and stability improvements.

R81 SmartConsole Releases

R81 SmartConsole releases accumulate GUI client fixes for R81. 
The article below describes each resolved issue and provides the build number which includes the fix. All resolved issues are included in the Incremental SmartConsole Build starting from the build number listed in this table (inclusive). In addition, you can find the date when you publish the build.


Check Point R81 for Scalable Platforms

The Scalable Platform software is now aligned with the R81 Cyber Security Platform, and brings feature parity to Check Point Maestro.
R81 is the industry’s most advanced Threat Prevention and Security Management software that delivers uncompromising simplicity and consolidation across the enterprise.

Enterprise Endpoint Security E84.30 macOS Clients

Enterprise Endpoint Security E84.30 macOS Clients includes many new features such as support for the Endpoint Security Clients on macOS Big Sur (11), Machine Authentication for VPN clients, and many new enhancements.

Jumbo Hotfix Accumulator for R81 (R81_jumbo_hf)

R81 Jumbo Hotfix Accumulator is an accumulation of stability and quality fixes that resolve multiple issues in different products.
This Incremental Hotfix and the related article below are periodically updated with new fixes.

Improved mechanism for R81 CPUSE installation and upgrade

R81 installation or upgrade using CPUSE may occasionally fail with an error message. To help prevent this, we updated the R81 CPUSE upgrade package. For more information see sk170757 - Check Point R81 Blink and Upgrade packages update FAQ.
To resolve such an issue, click the article below

Improved policy handling for Azure gateways

We received reports of some cases where policy installation on a Check Point Gateway in Azure caused the Security Gateway to crash and load a default policy.
Check Point has issued a Hotfix for this issue.


Introducing Tiny Agent

"Initial Client" is a very thin client, used for software deployment without any Software Blade. The new Tiny Agent functionality introduces a few major improvements, as compared to the current Endpoint Security Client "Initial Client".


SECUREKNOWLEDGE UPDATES
Top 5 Recent SecureKnowledge Solutions
  • Important certificate update to CloudGuard Controller, Cloud Management Extension (CME), and Azure HA Security Gateways – sk170660
  • Check Point CVE-2021-3156 (sudo Privilege Escalation) – sk171751
  • Check Point response to SolarWinds supply chain attack – sk171000
  • Endpoint Security Client consumes high CPU usage of Forensics (EFRService.exe) during Windows updates – sk170302
  • When connecting with E84.x, most requests are send to original DNS server configured on computer, instead of to DNS servers provided from the VPN client – sk171378

New Recommended SecureKnowledge Solutions
  • Advanced "fw ctl debug" features – sk171943
  • Maestro VLANs configuration enhancement – sk170294
  • How to find out the Endpoint Security Client versions in use – sk171292
  • How to debug SSHD on Gaia – sk171425
  • IPv6 support for CloudGuard IaaS in Azure – sk170760
  • New Compliance Blade enhancements for R81 Security Management – sk170578
  • Virtual Extensible LAN (VXLAN) Configuration Guide – sk170014
  • GRE Configuration Guide – sk169794

EDUCATION AND TRAINING
CISO's Secrets Podcast

CISO’s Secret Podcast is out: get behind the scenes of cybersecurity’s trending topics: True stories, real-life scenarios, and a solutions-focused approach with top CISO’s. New episode every week!


WiFi Hacking

Check Point teams up with SensePost to deliver one of their leading offensive courses. Now you can learn how to think like a hacker!


Jump Start for SMBs

Check Point is excited to offer a free 2-hour self-paced online jump start course for SMBs, as part of our jump start series. This course introduction continues our efforts to make Cyber Security education accessible to all.

GIVE US FEEDBACK
If you have any comments regarding this Newsletter or Support Center in general, send your feedback to skhelp@ts.checkpoint.com.

Follow us
©1994-2020 Check Point Software Technologies Ltd. (Nasdaq: CHKP) All rights reserved.
If you no longer wish to receive email from us, please unsubscribe or write: 959 Skyway Rd, Suite 300, San Carlos, CA 94070.

TAC, Hasolelim, Tel Aviv, Israel 45555555, Israel
You may unsubscribe or change your contact details at any time.