MEDIA ALERT: Check Point Provides Protection against Recently Discovered SSL Certificate Forgery Attack

Check Point^® Software Technologies Ltd. (Nasdaq:CHKP), the worldwide leader in securing the Internet, today announced that Check Point SmartDefense and IPS-1 protect its users against a recently discovered engineered attack that utilizes forged Secure Sockets Layer (SSL) certificates. SmartDefense and IPS-1 protections are available immediately for this attack.

Although difficult to exploit, the vulnerability could be used to impersonate any secure Web site on the Internet including banking and e-commerce sites. Mixing this vulnerability with DNS poisoning, hackers could easily launch nearly undetectable pharming attacks and silently misguide unsuspecting users to rogue Internet sites.

First revealed on Dec. 30, 2008, the attack leverages a weakness in the MD5 algorithm, which is used to sign SSL certificates that tie authentic corporate identities to corresponding Web site addresses and public encryption keys. Researchers were able to devise a way to manipulate an official Certificate Authority (CA) and launch an attack that would forge a rogue CA that then becomes trusted by all common browsers.

Check Point customers using Check Point SmartDefense Services, for both IPS-1 and SmartDefense in VPN-1 NGX R62/R65 and VSX NGX R65, can update their systems and activate a protection that will detect and block SSL connections to Web sites whose certificate may have been forged using this recently discovered attack. Customers are preemptively protected against DNS poisoning attacks if the relevant DNS protections were activated. Check Point’s consumer browser security solution, ZoneAlarm ForceField, was also updated with new functionality to protect consumers against the threat.

"There are no straightforward fixes to this vulnerability unless the Certificate Authorities stop using MD5 and move to the more secure SHA-1 algorithm, which is why it is so important for organizations to have protection against this possible exploit,” said Oded Gonda, vice president of network security products at Check Point.

Check Point SmartDefense provides intrusion prevention capabilities that are integrated into Check Point gateways. IPS-1 provides dedicated intrusion prevention capabilities. SmartDefense and IPS-1 are updated by SmartDefense Services, which provide ongoing and real-time updates and configuration advisories for defenses and security policies. SmartDefense and IPS-1 protections are developed and distributed by SmartDefense Research and Response Centers located around the globe.

More information about the attack, SmartDefense and IPS-1 protections can be found at Check Point's Security Research and Response Web site: http://www.checkpoint.com/defense/advisories/public/2009/cpai-31-Dec.html

About Check Point Software Technologies Ltd.

Check Point Software Technologies Ltd. (www.checkpoint.com) is the leader in securing the Internet. Check Point offers total security solutions featuring a unified gateway, single endpoint agent and single management architecture, customized to fit customers’ dynamic business needs. This combination is unique and is a result of our leadership and innovation in the enterprise firewall, personal firewall/endpoint, data security and VPN markets.

Check Point’s pure focus is on information security. Through its NGX platform, Check Point delivers a unified security architecture to protect business communications and resources, including corporate networks and applications, remote employees, branch offices and partner extranets. The company also offers market-leading endpoint and data security solutions with Check Point Endpoint Security products, protecting and encrypting sensitive corporate information stored on PCs and other mobile computing devices. Check Point's award-winning ZoneAlarm solutions protect millions of consumer PCs from hackers, spyware and identity theft. Check Point solutions are sold, integrated and serviced by a network of Check Point partners around the world and its customers include 100 percent of Fortune 100 companies and tens of thousands of businesses and organizations of all sizes.

©2009 Check Point Software Technologies Ltd. All rights reserved.