What is the Threat Cloud Intelligence Portal?
The ThreatCloud Intelligence Portal provides easy and unified access to Threat Intelligence protections and metadata: IPS protections, Applications, Anti-Virus & Anti-Bot signatures and more. It also provides access to Check Point’s intelligence & research publications, in context, with flexible search options. Portal users can interact with Check Point’s Threat Prevention capabilities by requesting a SandBlast analysis of a suspected malicious file and also request coverage for a new threat or report a misdetection in a certain Threat Prevention blade.
Who collects and analyzes intelligence in Check Point?
We have more than 150 analysts and researchers, actively researching new threats, obtaining relevant threat intelligence, developing new protections and signatures for various products and releasing them to our customers for their comprehensive protection.
How do you collect the global intelligence regarding attacks and trends?
We collect anonymized logs from customers' gateways and analyze them. Customers can opt-in to share such logs through SmartDashboard by checking: "Share anonymous attack information with Check Point ThreatCloud" under the "Anti-Bot and Anti-Virus" section in the gateway properties.
What is actionable intelligence?
The main goal of Check Point’s intelligence is to find ways to better protect our customers from cyber threats. This portal is a by-product of our day to day work on gathering such intelligence, which is leveraged to our threat prevention blades.