Home Page | Skip to Navigation | Skip to Content | Skip to Search | Skip to Footer

Check Point WebCheck

Check Point WebCheck

Overview

Check Point WebCheck protects the enterprise against the rising number of web based threats with a simple, transparent user experience. Check Point WebCheck isolates against known and unknown web threats with browser virtualization technology and provides advanced heuristics to stop users from going to dangerous sites.

Key Benefits

  • Provides a dual browser mode that segregates corporate data from the Internet
  • Allow users the freedom to surf with full protection against malicious software that is automatically downloaded and phishing attempts
  • Secure through unique browser virtualization, heuristic anti-phishing and malware site detection

Features

Browser Virtualization
Check Point WebCheck virtualizes the browser creating an isolated protected sandbox for the web browser segregating corporate data from the internet. Should a user accidentally visit a nefarious web site that delivers a drive-by malware download through a browser or browser plug-in vulnerability, no permanent damage will result. Instead, the attack will be contained inside the virtual sandbox.

Signature & Heuristic Phishing Protection
In addition to browser virtualization, Check Point WebCheck stops users from even going to dangerous sites. Check Point WebCheck detects phishing web sites using a dual-mode engine comprised of a phishing site signature database and a proprietary heuristic method. The signature database is continuously updated and provides up-to-the-minute protection from known phishing web sites. Check Point has also developed a heuristic phishing detection method that can preemptively spot fake and fraudulent copies of over 50 financial, social networking, webmail, and shopping web sites. Using this heuristic anti-phishing engine, Check Point WebCheck can identify threats before they are reported and placed on the signature based block lists.

Phishing Site Alert
Phishing Site Alert

Site Status Check
Check Point WebCheck rates each site visited to warn users if a site has weak or suspicious credentials. Numerous attributes are examined to determine if the site is dangerous. For example, the age of the domain, whether the IP is listed in public spam blocking lists, or if the site is hosted in certain foreign countries.

Site Status Check Alert
Site Status Check Alert

Centralized Browser Security Policy Management
Administrators can centrally configure and manage Check Point WebCheck as part of the endpoint security management console. The browser security policy can be enforced across multiple browser types including multiple versions of Windows Internet Explorer and Mozilla Firefox.

Check Point Endpoint Security Management Console
Check Point Endpoint Security Management Console

Centralized Browser Security Event Logging & Reporting
Using the web-based management console, administrators can gain quick, central insight into browser security events across the enterprise. Using the built-in reports and graphs, administrators can spot trends and investigate as needed.

Specifications

Browser Attack Protections
Target Details
External browser plug-in Drive-by malware via plug-in outside browser (Flash, Acrobat, Office,…)
Internal browser plug-in Drive-by malware via plug-in inside browser
Browser vulnerability Drive-by malware via browser hole
Browser helper object (BHO) Contains attacks targeting vulnerable BHOs
 
Example Heuristic Protections
Category Example Sites (Partial List)
Banking Bank of America
Wachovia
Wells Fargo
Commerce eBay
PayPal
Amazon
Social Networking & Webmail MySpace
Yahoo Mail
MSN Hotmail
Check Point WebCheck provides preemptive heuristic phishing protection for over 50 major web sites. The previous table illustrates a small sampling of sites the heuristic detection engine targets.
 
Supported Browsers
Name Version
Microsoft Internet Explorer 6, 7, 8
Mozilla Firefox 2, 3