Learn about Cyber Security topics through brief, informal conversations with experts from Check Point. Topics include: Incident Response, Customer Success Stories, Cyber Security Trends and Technologies.
The podcast CheckMates Go: Cyber Security Podcast from Check Point is created by Check Point CheckMates. The podcast and the artwork on this page are embedded on this page using the public podcast feed (RSS).
An excerpt of our No Suits No Ties session on recovering from a Ransomware outbreak.
An excerpt of our Infinity Identity TechTalk done back at the end of October.
An excerpt from our GenAI Security TechTalk from September.
An excerpt from our recent No Suit No Ties session from Incident Response called Vulnerabilities and Workarounds, where we explore a compelling case study in which attackers exploited vulnerabilities in an internet-facing device to gain initial access, escalate privileges, conduct reconnaissance, and infiltrate the internal network.
PhoneBoy talks about a paper written by Antoinette Hodes called Pay Now or Pay Later, understanding the costly consequences of neglecting OT/ICS Cybersecurity.
PhoneBoy talks about the new features and functionality in the R82 release for Quantum Security Gateways and Management.
An excerpt from a great TechTalk we did back in June on Threat Hunting with Memory Forensics given by Monnappa who also teaches Check Point's Threat Hunting Using Memory Forensics course.
NO SUITS, NO TIES aims to shed light on how Check Point MDR and Incident Response Analysts play a pivotal role in proactively identifying and responding to these threats when they are least expected.
This is an an audio version of our first No Suits, No Ties session entitled Going Equipped To Compromise where we discuss real-world examples from real cases where ‘utilities’ were and are being used in compromise incidents.
The session will cover:
PhoneBoy talks about some recent topics on the CheckMates community:
In this episode, we'll discuss some new features in Harmony Endpoint as well as best practices for deployment. These are excerpts from recent TechTalks:
In this episode, we discuss a handful of recent threads on CheckMates including:
SKs mentioned:
In this episode, we talk about how Check Point has shifted the paradigm in Email Security. This is an except from our Paradigm Shift TechTalk back in May.
In this episode, we talk about how Check Point has shifted the paradigm in Cloud Security. This is an except from our Paradigm Shift TechTalk back in May.
PhoneBoy discuses some recent threads in the CheckMates Cyber Security Community:
Referenced SKs:
Documentation References:
Want to see more episodes like this? Leave a comment on CheckMates on the thread for this episode: S06E12: Recently on CheckMates
In this episode, we provide an excerpt of our previous TechTalk on Harmony SASE where we include a case study where we were able to migrate a customer to Harmony SASE literally over a weekend!
In this episode, we provide an excerpt of our previous TechTalk on Infinity AI Copilot with focus around Quantum Security Gateway management use cases.
In this episode, we share some excerpts from our TechTalk on What's New in Quantum Spark back in March, provide information on the Early Availability of R81.10.15, and some Q&A around Quantum Spark appliances.
In this episode, we share some excerpts from a couple of recent sessions we did on Identity Awareness Best Practices.
In this episode, PhoneBoy talks about CVE-2024-24919 and five ways generative AI will impact CISOs and cyber security teams.
In this episode, PhoneBoy talks about how AI can be used for Threat Hunting.
In this episode, PhoneBoy talks about how organizations can be better prepared for the use of AI.
In this episode, PhoneBoy talks about cybersecurity then and now along with how AI can be leveraged to improve your security posture.
Links:
PhoneBoy talks about how XDR solutions should improve your cyber security posture, but not all do.
A brief overview of the product announcements made at CPX 2024. The materials are available on CheckMates: https://community.checkpoint.com/t5/General-Topics/CPX-2024/m-p/208174#M34494
Reviewing some of the top cyber security stories for 2023. Hope to see everyone at CPX 2024!
In this episode, PhoneBoy talks about fraud and how to be resilient against it.
In this episode, PhoneBoy covers three stories:
In this episode, PhoneBoy talks about the challenges with ensuring security with open-source software, which is in many products and services you use today.
In this episode, PhoneBoy talks with Aaron Brongersma about his exploration of AI tools, the issues with data residency and AI, the societal issues with AI, AI as a Service, and a few words about Quantum SASE.
Some questions and answers around Blockchain Security from our TechTalk on Blockchain Security.
PhoneBoy talks to Adam Gray, CTO of Novacoast about how ChatGPT is used by threat actors to compromise systems, the GPT-4 System Card, where ChatGPT seems to be useful in general with respect to cyber security, ChatGPT writing legal briefs, what early search engines and ChatGPT have in common, and how the more some things change, the more they stay the same.
A discussion between Check Point's Chief Strategy Officer Itai Greenberg and Idan Levin, Partner at Collider Ventures about the security trends related to blockchain security.
In this episode, PhoneBoy talks to Adam Gray, CTO of Novacoast to discuss some of what he's seen as part of their MSSP operations, including Living off the Land attacks, how AI is being actively used to exploit vulnerabilities, mobile security, CIS Controls, browser extensions, the data modern cars collect and share, password managers being a source of compromise, biometrics, why organizations use MSSPs like Pillr, automation and orchestration, vulnerability management, and Windows XP still being in use.
In this episode, I talk about how over-provisioning identities in the cloud leads to "shadow access" by malicious actors...and what you can do about it.
In this episode, PhoneBoy talks about some of the more rogue uses of GPT-like tools.
In this episode, PhoneBoy talks with Aaron Brongersma about the challenges of ensuring your code is secure, particularly when people who traditionally haven't written code are having to do so to leverage certain technologies like ChatGPT.
Ralph Bonnell did a great session on DNS as a CheckMates TechTalk. You can access the materials (including some Q&A) here.
In this episode, PhoneBoy covers a few recent stories related to the legal and cybersecurity issues related to generative AIs such as ChatGPT.
Cyber Security Evangelist Ashwin Ram talks about ChatGPT in the context of Artificial Intelligence and the Evolving Threat Landscape.
Full TechTalk: https://community.checkpoint.com/t5/General-Topics/AI-and-the-Evolving-Threat-Landscape-TechTalk-Video-Slides-and-Q/m-p/181992/highlight/true#M30319
Second in a series on business data and how organizations can protect it. Mazhar Hamayun is a Security Engineer with Check Point and a member of the Office of the CTO who covered this topic on CyberTalk.org. We discuss some of his tips in this episode.
The book I mentioned in this section: Building Internet Firewalls 2nd Edition.
Some articles from our friends at CyberTalk.org about passwords, phishing, and passkeys.
First of a series on business data and how organizations can protect it. Mazhar Hamayun is a Security Engineer with Check Point and a member of the Office of the CTO who covered this topic on CyberTalk.org. We begin the series by discussing what business data is, where it might reside, who might want it that shouldn't, and why.
Part 2 of my conversation with Cyber Security Evangelist Eddie Doyle about how organizations can create a culture of cyber security that goes beyond just the technical people, and it's easier than you think!
From our friends at CyberTalk.org:
PhoneBoy talks with Cyber Security Evangelist Eddie Doyle about how organizations can create a culture of cyber security that goes beyond just the technical people, and it's easier than you think!
Part 2 of 2 of our conversation with Check Point Evangelist Mark Ostrowski about how to protect yourself from the threats out there today.
Full TechTalk here: https://community.checkpoint.com/t5/Threat-Prevention/Malware-2021-to-Present-Day-Building-a-Preventative-Cyber/m-p/152918#M4011
We're going to try something a little different with PhoneBoy reading and commenting on a few articles from CyberTalk.org. If you like this format, let us know by commenting!
Links:
Part 1 of 2 with Check Point Evangelist Mark Ostrowski on the state of malware over the last 18 months or so.
Full TechTalk here: https://community.checkpoint.com/t5/Threat-Prevention/Malware-2021-to-Present-Day-Building-a-Preventative-Cyber/m-p/152918#M4011
PhoneBoy and fellow Cyber Security Evangelist Grant Asplund talk about the current state of the workplace in the era of Covid and some stories of pre-Covid business travel.
Part 2 of PhoneBoy's conversation with Adam Gray at Novacoast about Incident Response, Remote Access, and the challenges of doing cyber security in a distributed world.
Part 2 of PhoneBoy's conversation with fellow Cyber Security Evangelist who hosts the CISO's Secrets podcast as well as the Talking Cloud podcast. We talk a little bit about MetaInfo, a company Check Point acquired in 1998, and a bit more technology history that is still impacting cyber security today.
That diagram from 1997 mentioned in the show is on the CheckMates post for this episode.
PhoneBoy talks with fellow Cyber Security Evangelist Grant Asplund, host of the CISO's Secrets podcast as well as the Talking Cloud podcast. Grant's got quite an interesting history, which we get into in this episode, talking his history opening up an Apple dealer back in the 1980s and what networking looked like back then.
PhoneBoy talks with Check Point Product Manager Yoni Nave about Check Point's upcoming Extended Detection and Response (XDR) offering which will also incorporate some Managed Detection and Response (MDR) elements if you need it.
PhoneBoy talks with Product Manager Yoni Nave about the evolution from Endpoint Detection and Response (EDR) to Extended Detection and Response (XDR).
PhoneBoy talks with Product Manager Yoni Nave to answer the question What is Endpoint Detection and Response?
In April of 2021, PhoneBoy talked with Tim Otis and Jon Niccolls of the Check Point Incident Response Team about Ransomware. Since then, things have gotten worse. How was Colonial Pipeline compromised with Ransomware? An older VPN account.
PhoneBoy talks with Tim Otis and Jon Niccolls from the Check Point Incident Response Team about what the recent Solarwinds Suburst attack and Microsoft Exchange Hack have in common from an incident response point of view.
Part 2 of our conversation with Product Manager Yoni Nave about Check Point's participation in the recent MITRE Engenuity Enterprise Attack Evaluation 2020, the excellent results Check Point received, and why it matters.
The report from MITRE: https://attackevals.mitre-engenuity.org/enterprise/participants/checkpoint/results.html?adversary=carbanak_fin7
Check Point's blog post on the topic: https://blog.checkpoint.com/2021/04/20/mitre-engenuity-attck-evaluations-highlight-check-point-software-leadership-in-endpoint-security-with-100-detection-across-all-tested-unique-attck-techniques/
Part 1 of the conversation: https://community.checkpoint.com/t5/CheckMates-Go-Cyber-Security/S03E09-MITRE-Engenuity-ATT-amp-CK-Evaluation-Part-1/ba-p/118020
Part 1 of a 2 part conversation with Product Manager Yoni Nave about Check Point's participation in the recent MITRE Engenuity Enterprise Attack Evaluation 2020, the excellent results Check Point received, and why it matters.
The report from MITRE: https://attackevals.mitre-engenuity.org/enterprise/participants/checkpoint/results.html?adversary=carbanak_fin7
Check Point's blog post on the topic: https://blog.checkpoint.com/2021/04/20/mitre-engenuity-attck-evaluations-highlight-check-point-software-leadership-in-endpoint-security-with-100-detection-across-all-tested-unique-attck-techniques/
PhoneBoy talks with Shay Levin and Val Loukine about some recent community projects:
And register for our CPX 360 2021 Wrap-Up happening on April 20th @ 8am PDT/ 5pm CET.
PhoneBoy talks with Eric Anderson at Atlantic Data Security about the psychology of always being on the defense in cyber security.
What value does a value added reseller actually add? PhoneBoy talks with Eric Anderson at Atlantic Data Security about it.
Also, if you missed all the great content at CPX 360 2021, we have it on CheckMates!
The mics are turned around and PhoneBoy's the one being interviewed, this time by fellow Check Point Evangelist Grant Asplund for his Talking Cloud podcast.
In this episode, we'll hear from Gera Dorfman, Benny Shlesinger, Oded Gonda, and Itai Greenberg who will give you a preview of what we'll be speaking about in more detail as part of Check Point's CPX 360 2021 conference coming up on the 23-24 February 2021 around Network Security and how we will be expanding the Infinity vision. Make sure you listen to Part 1 of our CPX 360 2021 preview if you haven't already!
In this episode, we will hear from Dr. Dorit Dor, TJ Gonen, and Neatsun Ziv who will give you a preview of what we'll be speaking about in more detail as part of our CPX 360 2021 conference coming up on the 23-24 February 2021 around Cloud and Endpoint Security.
Is there really a talent shortage in Cyber Security? PhoneBoy talks with Eric Anderson at Atlantic Data Security about the reality of the situation.
As part of our CheckMates Fest, Check Point's Chief Security Advisor Dan Wiley gave us an overview of what Incidence Response saw in 2020 in terms of threats.
To see what Dan Wiley looked like during his presentation, head over to the show page on CheckMates.
A brief reflection about CheckMates Go in 2020 and our upcoming CheckMates Fest on 6 January.
PhoneBoy talks with David Ulloa, CISO at IMC Companies about their experience with Check Point CloudGuard SaaS, which he also posted a review of on IT Central Station. See also the full IMC Customer success story on the Check Point website and the customer Webinar with IMC Companies.
In a recent CheckMates event, put together by Check Point SE and CheckMates Ambassador Stacy Dunn, IT professionals gathered around the virtual campfire to tell some nightmarish tales, like that time a database was accidentally deleted, encountering malware or ransomware for the first time, or other disastrous IT situations that may have been miraculously recovered from.
In this excerpt, we have stories from David Hughes, Chris Young, and Skyler Tuter. Previous excerpts were pushed as S02E34 and S02E36.
PhoneBoy talks with David Ulloa, CISO at IMC Companies about their experience with Check Point Remote Access. See also the full IMC Customer success story on the Check Point website and the customer Webinar with IMC Companies.
It's that time of the year where people shop online. Check Point Research has seen a marked increase in the number of phishing-related emails, particularly those that claim to be from shipping companies.
PhoneBoy talks with Security Analyst Adi Rosenbaum about the report, what we found, and how to protect yourself from these scams. See the full report on Check Point's blog.
In a recent CheckMates event, put together by Check Point SE and CheckMates Ambassador Stacy Dunn, IT professionals gathered around the virtual campfire to tell some nightmarish tales, like that time a database was accidentally deleted, encountering malware or ransomware for the first time, or other disastrous IT situations that may have been miraculously recovered from.
The previous excerpt from this session was published as S02E34.
In this excerpt, we hear from Tracy Sargeant and Jeremiah Robinson.
PhoneBoy talks with David Ulloa, CISO at IMC Companies about their experience with Check Point SandBlast Agent. See also the full IMC Customer success story on the Check Point website and the customer Webinar with IMC Companies.
In a recent CheckMates event, put together by Check Point SE and CheckMates Ambassador Stacy Dunn, IT professionals gathered around the virtual campfire to tell some nightmarish tales, like that time a database was accidentally deleted, encountering malware or ransomware for the first time, or other disastrous IT situations that may have been miraculously recovered from.
In this excerpt from the event, we have stories from Stephen Hawkey and Joe Sullivan.
In case you need to double check, the new podcast RSS feed is: https://feeds.buzzsprout.com/1474780.rss
PhoneBoy talks with Tim Otis of the Check Point Incident Response Team about Wiper Malware... and The Cuckoo's Egg gets a mention.
A quick bulletin on the rise in Ransomware incidents observed over the last 48 hours.
PhoneBoy talks with Tim Otis from the Check Point Incident Response Team about Meme Warfare and Logo-ed Vulnerabilities
PhoneBoy talks with Tim Otis from the Check Point Incident Response Team about what threats we see related to elections.
Somehow, PhoneBoy's conversation with Ray Schippers and Tim Otis from the Check Point Incident Response Team around Ransomware led to Pee Chee folders.
This is my third conversation with Oren Koren on Infinity SOC. This time, we talk about the onboarding process and how little data we actually need from customers to show them tremendous value.
PhoneBoy talks with Ray Schippers and Tim Otis from the Check Point Incident Response Team about how the threat of DDoS is being used to extort money from organizations.
PhoneBoy talks with Oren Koren about the kinds of things you'll find in Infinity SOC to make your life as a cyber security analyst easier. See also our previous episode on Infinity SOC.
Check Point acquires Odo Security, which developed a cloud-based, clientless Secure Access Service Edge (SASE) technology that delivers secure remote access. Check Point Founder CEO Gil Shwed discusses the acquisition and Product Manager Eytan Segal talks about what our plan is to integrate this product into Check Point's portfolio.
PhoneBoy talks with Tim Otis and Ray Schippers from the Check Point Incident Response Team about how social engineering factors into cyber security incidents.
PhoneBoy Talks with Oren Koren about the evolution of Check Point Infinity SOC from its early days as a small R&D project and how Artificial Intelligence and Machine Learning are being used to quickly find cyber threats.
Shay Levin talks with Check Point researcher Sagi Tzadik about the discovery of SIGRed (CVE-2020-1350) and Ori Hamama about how we developed and deployed an IPS protection for it.
This is the final installment of our Ask Me Anything with Dr. Dorit Dor and team. Many of the questions asked involves features and functionality that will be in the R81 release, which is now in Public EA.
PhoneBoy talks with Global Security Architect Thomas Poole about common areas where organizations can improve their security posture.
Part 2 of our Ask Me Anything with Dr. Dorit Dor and team. In this episode, we wonder if there is any question Dorit can't answer? We also hear from Amnon Perlmutter, Eyal Fingold, and Itai Greenberg about DevSecOps and SD-WAN.
In this episode, PhoneBoy talks with Global Security Architect JP Edwards about the Secure Cloud Transformation and how it evolved from the Check Point Enterprise Security Framework.
First of three parts of our Ask Me Anything with Check Point VP of Products Dr. Dorit Dor and her team.In this excerpt, we hear from Dorit, Gera Dorfman, and Benny Shlesinger on how Covid-19 has changed Check Point's product roadmap and delivery, Remote Access, Linux Endpoint, and R81.
PhoneBoy talks with Global Security Architect JP Edwards about the Check Point Enterprise Security Framework
The last of our excerpts from our Ask Me Anything with Check Point Founder and CEO Gil Shwed back in May.
A conversation with Tim Otis and Ray Schippers from the Check Point Incident Response Team that starts off talking about OWA and leads to a conversation about how customers can leverage features in the Check Point Security Gateway better.
In this episode, we have another excerpt from our Ask Me Anything with Gil Shwed, this time talking about how Check Point is handling the business realities with Covid-19.
In this episode, I talk with Ray Schippers, Tim Otis, and Ashwin Ram about what's happening in the land of DDoS.
An excerpt from our Ask Me Anything with Check Point Founder and CEO Gil Shwed covering IoT, Zoom, and SD-WAN.
PhoneBoy talks with Tim Otis and Ray Schippers from the Check Point Incident Response Team about a recent investigation that led to APT41, which led to a discussion about attacks that "live off the land."
An excerpt of our Ask Me Anything with Check Point Founder and CEO Gil Shwed where we discuss how Covid-19 changed the cyber threat landscape.
PhoneBoy talks with fellow Cyber Security Evangelist Ashwin Ram about an idea for a talk he's putting together around lessons we've learned from dealing with Covid-19 in healthcare and how they can apply to Cyber Security.
PhoneBoy talks with fellow Cyber Security Evangelist Ashwin Ram about the mindset of Detection versus the Prevention mindset.
In this episode, PhoneBoy talks with Ray Schippers and Tim Otis from the Check Point Incident Response Team about phishing and where it can lead.
PhoneBoy's Conversation with Check Point Cyber Security Evangelist Ashwin Ram about his TechTalk on the cyber threats and opportunities (for malicious actors) in response to COVID-19.
PhoneBoy talks to Tim Otis and Raymond Schippers from Check Point's Incident Response Team about Ransomware: how it's getting into environments and what you can do about it.
PhoneBoy talks with Ray Schippers and Tim Otis from the Check Point Incident Response Team about recent exploits against Remote Access infrastructure and what steps you can take to protect it and your users.
Excerpt from our TechTalk: What's New In R80.40 Security Management.
PhoneBoy's conversation with Danny Shulman and Peter Elmer about HTTPS Inspection, which was covered in more detail in a TechTalk.
PhoneBoy Chats with Tomer Solé about Check Point's newest solution for securing SD-WAN: CloudGuard Connect
Joining Oded Awaskar in this episode are Tim Otis and Ray Schippers from the Check Point Incident Response team.
In this episode, we deep dive into CVE-2019-0708 dubbed “BlueKeep”, which was disclosed in the May 2019 “Patch Tuesday” of Microsoft.
We will share with you background on this vulnerability and reveal the “behind the scenes” of a security company when such a vulnerability is disclosed.
The episode concludes with recommendations on how to secure your environment from BlueKeep and similar vulnerabilities.
Joining Oded Awaskar in this episode is Avigayil Mechtinger, a cyber analyst from Check Point's Mobile Security team, telling us about the recent PreAMo clicker campaign (13:10).
In this episode, we also cover the following topics:
You may read the full PreAMo clicker campaign in the cp<r> blog.
Both of the Threat Intelligence reports are located here and here.
Oded Awaskar is joined by Aseel Kayal, a malware analyst from Check Point's Threat Intelligence group who tells us about her latest research dealing with the Muddy Water APT group’s activity.
In addition, we discuss these issues:
The relevant Threat Intelligence reports are located here and here.
The second episode of the CheckMates GO Podcast is out.
Joining Oded Awaskar is Yoav Arad Pinkas and Hadar Wiesen, a security analyst in the Managed Security Service team
In this episode we cover the following topics:
You may read the full Xiaomi research in the cp<r> blog.
Both of the Threat Intelligence Reports are located here and here.
In this podcast, Oded Awaskar and Yoav Arad Pinkas review the latest cyber & intelligence incidents from the past 2 weeks.
On the agenda:
You can find our full weekly Threat Intelligence reports here and here.
Also, the full “Simbad” blog post can be found in the cp<r>esearch blog.
En liten tjänst av I'm With Friends. Finns även på engelska.