Check Point makes it safe to surf for porn

Check Point claims its ZoneAlarm ForceField security product, which is set for release later this month, will not only protect against iFrame attacks, it also allows users to discretely view porn or "buy gifts" without getting caught.

Jordy Berson, Check Point's US group product manager, told ZDNet.com.au that ForceField creates a virtual environment for either Firefox or Internet Explorer.

"Essentially, you put the computer into a virtual safe environment so that any changes done on the computer are done in a sandbox," he said.

Drive by download attacks have become the most frequent method of infection, with cybercriminals targeting either flaws in browsers or Web-applications — such as Flash or QuickTime — to compromise a system.

"[Forcefield] works no matter what threat — even zero hour threats," claimed Berson.

ForceField contains a mixture of signature and behavioural defence mechanisms, such as the NetCraft anti-phishing database, as well as ZoneAlarm's community-based feedback mechanism, to detect and define malicious files.

Berson claims that ForceField can also scuttle keyloggers.

"Malware gets on the computer and starts executing files and if it turns out to be a keylogger and screen grabber, as soon as it starts to log key strokes we try to jam the system," he said.

"The malware will think it is logging key strokes but it will only come up blank."

ForceField also comes with a special "private browser" button, allowing users to surf the Internet freely without have sessions recorded.

"From the moment you launch it, any site you go to will not be recorded on that computer," he said.

A beta version of the software is available for download, but Check Point warns: "Do not contact the Technical Support Department for any issues you encounter with this technical Beta."

• Related stories

• Alerts

Add your opinion

Contradiction Dean -- 03/04/08

"even zero hour threats"

and

"ForceField contains a mixture of signature and behavioural defence mechanisms, such as the NetCraft anti-phishing database, as well as ZoneAlarm's community-based feedback mechanism"

Those two statements are contradictory. It's logically impossible to counteract zero-hour exploits via a "community-based feedback mechanism". And "signature and behavioural" mechanism are easy for hackers to work around, assuming they have access to the details of the algorithms (which they naturally will, since they have access to the software itself).

Either Forcefield does something *else* that was not reported in this article, or it cannot protect against "zero-hour" threats.

• Reply to comment
• Reply to story
• Report offensive content

that depends James -- 04/04/08 (in reply to #320099150)

it depends on whether they claim it can defend against *all* zero-day threats, or *some*.

a well configured firewall can defend against some.

a computer unplugged from the network is protected from all (except zero-day end users).

• Reply to comment
• Report offensive content

Multiple technologies Anonymous -- 04/04/08

ForceField has multiple layers of protection ranging from virtualization to heuristics to signatures. Virtualization blocks *any* malware that attempts to get on the PC via a "drive-by-download" delivery mechanism. As such, it need not distinguish between zero-hour or older threats; they're all blocked.
ForceField adds signature and heuristic anti-phishing, a heuristic site safety check, a signature spyware site check, a signature (and community-fed) download check, and a keylogger jammer that blocks a method of attack (and thus is effective against zero-hour and old threats alike). Good questions, thanks for asking.

• Reply to comment
• Reply to story
• Report offensive content

Multiple Technologies comment Jordy Berson -- 04/04/08 (in reply to #320099196)

I didn't mean to make that anonymous. This is Jordy, quoted in the story.

• Reply to comment
• Report offensive content

Virtualization Dean -- 04/04/08 (in reply to #320099196)

Thanks, Jordy, some kind of virtualization would definitely provide the extra functionality needed so that you could block "zero-hour" threats. That wasn't really mentioned in the article.

Well, now that I re-read it, I guess "virtual safe" and "sandbox" kind of apply, but you wouldn't really realise that unless you already knew...

• Reply to comment
• Report offensive content

Virtual Zero Hour Theats Homer J. Simpson -- 19/04/08 (in reply to #320099212)

AAAAAGGGGGHHHH!!!! BUT WHAT DOES IT ALL MEAN????

• Reply to comment
• Report offensive content

Bad Idea! Anonymous -- 04/07/08

This will encourage people to look up pornography more! Good work, spending money on encouraging people to surf for porn without getting caught! How dumb is this idea!

• Reply to comment
• Reply to story
• Report offensive content

"It takes one, to know one" Anonymous -- 06/07/08

Sorry, but your comment reminded me of the saying, "It takes one, to know one."

For you to be reading this article in the first place, begs attention.

I already use a virtual sandbox program called Sandboxie.

I'd only ever used it when I'd download form dubious sites. And it seemed to do the job quite well.

One never knows when something one downloads may have a virus waiting to be opened.

Good day to you all.

• Reply to comment
• Reply to story
• Report offensive content

• Just In

• Most Popular

• Most Discussed

Reader Services

Popular Topics

Essentials