CheckMates Go: Cyber Security Podcast from Check Point

PhoneBoy interviews Cyber Security Technologist and Evangelist Marc Davidson discussing his recent blog post on Why Defenses Fail: The Fragmentation Problem, the second in a series on credential theft.

PhoneBoy also highlights a new feature in Infinity Playblocks called IOC Enforcement Connector.

In this episode of CheckMates Go, we'll play an excerpt from our recent Access Control and Threat Prevention Best Practices session that focuses on a key service that drives both: ThreatCloud AI.

On this episode of CheckMates Go, we’ll answer some questions about the community itself from our recent Learn About CheckMates session, the announcement of Public Early Availability of R82.10, and an errata about the Dynamic URL List feature mentioned in the last episode.

See also our Events calendar and the upcoming Deep Dive on Troubleshooting 101 for EMEA.

We have an excerpt from our recent Future of SD-WAN session and how Check Point products protect against BRICKSTORM.

In this episode, PhoneBoy talks about the DigiCert issue, an excerpt from our External Cyber Risks session, four features you should be using, a SmartConsole extension to help you find zero hit-count rules, and new API calls in R82 JHF 38.

Upcoming Sessions the week of September 8 2025:

• The Future of SD-WAN
• Management API Best Practices
• Quantum Spark Management Unleashed
• Remote Access and SASE Best Practices 

PhoneBoy plays an excerpt from the recent State of Ransomware Q2 2025 session as well addressing a bunch of questions on Web Filtering!

• Web Filtering Best Practices August 2025
• Not showing last matched layer in logs
• App Control/URLF Rules and Classification
• Unified Column-Based Rule Matching
• Best Practices for Websites and Applications
• Product & Feature Suggestions
• External RFE Ideas Portal (Pilot)

PhoneBoy plays an excerpt from our SharePoint CVEs Deep Dive, 3 Features You Should Start Using, different DNS servers per domain, using dnsmasq prior to R82, interpreting fwaccel stat output, ordered versus inline layers, and a SmartConsole cheat cheat.

PhoneBoy discusses Check Point's announcement of the Quantum Force 3900 Series Appliances, sk183199, Hotfix Installation Order, R82.10 Production Early Availability, and new updatable objects (including one for MCP Servers).

Make sure to register for our upcoming TechTalk showing off Veriti, a.k.a. Threat Exposure Management.

PhoneBoy discusses the latest TechTalk on AI Agents, Threat Prevention Performance Boost in R82, R82 JHF 25, SAML and Secondary Connect, SSH to a given VS, and the generic-object API.

We have a few TechTalks planned:

• 18 June 2025: Integrating Check Point Security Management with AI Tools
• 2 July 2025: New products for Superior Branch User Experience plus Higher Threat Prevention Throughput
• Mid-July: Veriti (exact date to be finalized)

I also discuss how to filter "wildcard domains" for web access and how to build your own Check Point lab.

Some recent discussions on the CheckMates community:

• IKEv2 Benefits
• sk166415
• Harmony Email and Collaboration and Microsoft DirectSend
• Show NAT Tables
• fwxalloc top users
• fw up_execute
• Maestro Masters Architectures and Optimization
• https://community.checkpoint.com/t5/Maestro/Maestro-Q-amp-A-R82-Highlights-and-Common-Questions/td-p/247980
• Check Point Quantum Management MCP Server

Professional Services Consultant Lari Luoma gives an introduction to Maestro and how it is different from ElasticXL, launched as part of the R82 release.

• Quantum Maestro Introduction session
• Quantum Maestro Architectures and Optimization session
• Join us for Maestro Migration and Upgrade Best Practices on June 3rd: EMEA, AMER

Product Manager Amit Navon discusses discusses the four ways Check Point provides a hybrid SASE solution.