Today’s CheckMates MVP Heiko Akenbrand is behind some of the most widely used tools in the CheckMates Toolbox including the SmartConsole Extension - Easy deletion of unused rules and the Easy Backup Tool. These scripts have been used consistently by CheckMates all over the world and have made a real impact on our community.

Congratulations Heiko, we are grateful for your contributions!

Take a look at it: https://community.checkpoint.com/t5/SmartConsole-Extensions/SmartConsole-Extension-Easy-deletion-of-unused-rules/m-p/256149#M403

#CheckMates #community #CheckPoint

Join us for an exclusive webinar to unlock everything CheckMates has to offer and learn how to get the most from your Check Point solutions.

In this interactive session, you’ll learn how to:
🧭 Navigate the CheckMates Community like a pro
🤓 Get fast access to expert knowledge
🌎 Share insights and collaborate globally
🔝 Maximize your value from Check Point

CheckMates is more than a forum. It's a force multiplier for learning.

https://pages.checkpoint.com/2025-december-ww-checkmates-unlocking-to-connect-webinar.html

#CheckMates #CheckPoint #community

GenAI apps and agents introduce entirely new attack surfaces. Traditional security controls weren’t built to prevent prompt injection, data leakage, or AI-driven abuse, leaving organizations exposed.

CloudGuard WAF closes that gap. Its dual-layer ML engine autonomously protects GenAI apps, APIs, and agents with high accuracy and minimal false positives-no manual tuning, no noise, no guesswork.

https://www.checkpoint.com/resources/items/white-paper-cloudguard-waf-security-for-genai-applications

#CheckPoint #CloudGuard #WAF

#CheckPoint Research shared details of a critical exploit in #Yearn Finance’s yETH pool, where an attacker abused a smart contract flaw to mint trillions of tokens with a minuscule deposit, resulting in the theft of approximately $9 million in assets from the Ethereum-based DeFi protocol.

https://research.checkpoint.com/2025/16-wei/

We are excited to announce the release of the full video showcasing Check Point’s latest addition to the Quantum Force family. This introduction highlights how the new appliance brings advanced threat prevention, accelerated performance, and simple scalability to branch offices and distributed environments. Watch the Full Video here:

https://community.checkpoint.com/t5/Security-Gateways/Quantum-Force-The-Next-Generation-of-Branch-Office-Security/m-p/264835

#CheckMates #CheckPoint #QuantumForce

Traditional WAFs are more expensive than they look: Hidden costs pile up-manual tuning, false positives, downtime, and breach fallout that drain your team, your time, and your budget.

Meet Check Point CloudGuard WAF: Our AI-powered, prevention-first approach eliminates noisy alerts, cuts operational overhead, reduces risk exposure, and delivers industry-leading protection-making it the most cost-effective WAF on the market.

(1/2)

#CheckPoint #CloudGuard #CloudGuarWAF #ChillwithCloudGuard

Ready to prove your #GenAI security mastery?

🧙♂️Gandalf has arrived in IGS Cyber Park

This interactive AI security challenge, created by #Lakera (a #CheckPoint company), lets you safely test how GenAI can be attacked and defended.

👉 Start your Gandalf quest inside IGS Cyber Park: https://cyberpark.checkpoint.com/#/game/8a69d5b1989dabc1019a72056b8d0004

X Mayo Co-Creating With Mike Sikowitz & Poised To Star In TSA Comedy ‘Checkpoint’ In Works At CBS
#News #CBS #Checkpoint #Kapital #MikeSikowitz #XMayo

https://deadline.com/2025/12/x-mayo-checkpoint-mike-sikowitz-cbs-tsa-kapital-1236644232/

#CheckPoint Research revealed a #vulnerability in #OpenAI Codex CLI that allowed attackers to achieve remote code execution via malicious project-local configuration files (MCP entries) executed without user prompts. OpenAI released a patch in version 0.23.0 to address the automatic execution risk.

https://research.checkpoint.com/2025/openai-codex-cli-command-injection-vulnerability/

For the latest discoveries in cyber research for the week of 8th December, please download our Threat Intelligence Bulletin from Check Point Research.

https://research.checkpoint.com/2025/8th-december-threat-intelligence-report/

#CheckPoint #ThreatIntelligence

Please join Check Mates, and our Security Engineer Jason Dotray, on Thursday, December 11th at 11:00 AM ET for a Tips and Tricks session on Check Point MCP Servers.

If you cannot attend live, please register to receive the follow-up email with the recording link.

https://checkpoint.zoom.us/webinar/register/WN_518-DFIuTvCHlA2JxG49Uw#/registration

#CheckMates #MCP #CheckPoint

#CheckPoint has elaborated on the critical #React2Shell vulnerability, CVE-2025-55182, that affects React 19.x and related server-side frameworks such as Next.js 15.x/16.x. The vulnerability enables unauthenticated remote code execution via malicious HTTP requests targeting the server’s decoding process. Exploitation allows attackers to gain full control over application servers...

https://blog.checkpoint.com/securing-the-cloud/what-is-react2shell-cve-2025-55182-in-plain-english-and-why-check-point-cloudguard-waf-customers-carried-on-with-their-day/

Have you heard of the #CheckMates #MVP Program!? Submissions for the 2026 program are now open! Join the MVP program for amazing perks including spotlight features like this one! This week's MVP spotlight goes out to Mark Weber! Mark has been an active CheckMate since 2019, leading one of the largest CheckMates local user groups in the EMEA region in the Netherlands for some years! Keep up the good work Mark!

Learn more about our MVP program: https://ow.ly/pY6E50XFHC7

#Community #CheckPoint

So suppose you use #Discord. And you followed Discord's new "#checkpoint" button and accepted their "gift" that they didn't tell you in advance was an avatar "#decoration", and you look at the "decoration" and it's fucking butt-ugly and you want to turn the damn thing off...

Here's how you do it. Go to the Settings cogwheel. Go to Profile, and Edit Profile, and importantly, go to edit your MAIN PROFILE, not any per-server profile, even though per-server profile is the top entry on the menu. Turning it off from per-server is locked behind a purchase of 'Nitro'. From the edit MAIN profile tab, you can now click Avatar Decoration and select None.

Be aware that while turning the decoration ON takes effect globally and immediately, turning it OFF takes effect only after you quit Discord and log back in.

0/10 on implementation of this misfeature, Discord.

We’re gearing up for the end of the week but not before celebrating another CheckMates Platinum MVP! This time we’re giving a proper shout-out to one of our long-time community leaders. With over 300 posts, self-run Maestro workshops, and a track record of leading discussions since 2016, Lari Luoma has been shaping this community for years. Congratulations Lari and thank you for everything you do!

https://www.linkedin.com/feed/update/urn:li:share:7402351232520179714/

#MVP #CheckMates #Community #CheckPoint

https://www.minenest.com/610438/ Speedrunner VS Hunter BUT Drops are Random #cash #CashAndNico #checkpoint #chip #ChipAndMilo #ChipAndMiloRoblox #Kory #maizen #Mia #milo #MiloAndChip #MiloAndChipMinecraft #MiloSpeedrun #Minecraft #MinecraftBuild #MinecraftBut #MinecraftButBlocksAreOp #MinecraftButDropsAreRandom #MinecraftMod #MinecraftSpeedrun #MinecraftVideos #nico #NicoAndCash #NoobVsPro #Omz #speedrunner #SpeedrunnerVsHunter #SpeedrunnerVSHunterBUTDropsAreRandom

Checkpoint

Cheeti didn't get a Discord Checkpoint... So he is having to do his own! Here is a statistic he and... probably a lot of other people will resonate with!

What's some music you found this year?
#avali #comic #rock #checkpoint #discord

#CheckPoint researchers analyzed the Shai-Hulud 2.0 #npm supply chain campaign that compromised over 600 npm packages and 25,000 GitHub repositories. Malicious preinstall scripts stole developer and multi-cloud credentials, exfiltrated them to attacker #GitHub repos, registered infected hosts as self-hosted runners, and used the stolen tokens for worm-like propagation across npm and GitHub.

https://blog.checkpoint.com/research/shai-hulud-2-0-inside-the-second-coming-the-most-aggressive-npm-supply-chain-attack-of-2025/

WOW, Discord also has a wrapped now?
Love reading these. To some it might seem like an annoying trent but I like it.
Nice, I guess:
> You were in the Top 14.96% for messages sent on Discord!
(later on at the summary it says I have sent 1473 messages.)
> You were in the Top 16.34% of Discord voice chatters worldwide!
I have been 206-214 hours in Discord vc.
And, I used 84 emojis
Also for those NVDA users wondering, the last unlabeled button is the one that stands for 'next'.
#discord #discordwrapped #discordcheckpoint #checkpoint

This weeks Post of the Week is on Best-in-Class GenAI Security with CloudGuard WAF + Lakera.

We’re excited to announce the expansion of CloudGuard WAF with integrated Lakera GenAI security now delivering prevention-first protection for Web, API, and GenAI applications.

If you want a quick breakdown of what’s new and why it matters, we put it all into one place.

Read the full post here: https://ow.ly/HBH350XBbXT

#CheckPoint #CloudGuard #WAF #Lakera