CheckPoint Software > Case Studies > SONPO Enhances File Transfer Security with Check Point ThreatCloud API Integration

SONPO Enhances File Transfer Security with Check Point ThreatCloud API Integration

Technology Category

Application Infrastructure & Middleware - API Integration & Management
Cybersecurity & Privacy - Malware Protection

Applicable Industries

National Security & Defense

Applicable Functions

Product Research & Development
Sales & Marketing

Use Cases

Tamper Detection

Services

System Integration

About The Customer

SONPO, a.s. is a company based in Prague, the Czech Republic, that provides security, development, and ICT integration solutions. The company serves customers across Europe, including small and medium-sized businesses across industries such as financial services, government, healthcare, and IT. SONPO's developers and sales teams focus on protecting their customers' systems and applications from zero-day cyber threats. The company offers a unique file exchange service, SOFIE, which is designed to protect against zero-day threats.

Log in to view content

The Challenge

SONPO, a security, development, and integration services provider, faced the challenge of protecting its clients against zero-day threats hidden in email attachments and transferred files. The company needed to integrate sandboxing technology for malware analysis with their file transfer service offering. The challenge was to ensure protection across a wide range of client businesses, infrastructures, and file types. The company was also tasked with defending against ransomware, malware, and other zero-day threats, which is an ongoing challenge for companies worldwide. Each organization that SONPO served had a unique environment to defend, so there was no one-size-fits-all security solution.

Log in to view content

The Solution

SONPO chose to integrate Check Point ThreatCloud Threat Emulation API with their file transfer service, SOFIE. When a suspicious file enters SOFIE, the ThreatCloud Threat Emulation sandboxes it and queries ThreatCloud's threat intelligence to check if the file is malicious. ThreatCloud's Threat Emulation has the highest catch rate in the industry to protect organizations from unknown malware, zero-day, and targeted attacks. It also detects new unknown malware found in email attachments, downloaded files, and URLs through advanced AI-based engines. The ThreatCloud Threat Emulation API integration enabled SONPO to create a unique solution that delivers more than simple email security products. With SOFIE, clients can securely exchange files of any size or type-internally and with external partners. Files are sandboxed and inspected quickly. Those that behave suspiciously are flagged and further analyzed, stopping malicious files from entering the client's network.

Log in to view content

Operational Impact

The integration of Check Point ThreatCloud Threat Emulation API with SONPO's file transfer service, SOFIE, has resulted in a unique solution that delivers more than simple email security products. It has enabled clients to securely exchange files of any size or type, both internally and with external partners. The solution quickly inspects and sandboxes files, flagging and further analyzing those that behave suspiciously. This has effectively addressed a significant threat vector while making it easy for clients to use. Furthermore, the solution has provided a flexible, scalable solution for protecting the many different companies that SONPO serves. One of SONPO's clients, who had experienced a ransomware attack in the past, has not experienced downtime due to security threats since the implementation of the solution.

Log in to view content

Quantitative Benefit

SONPO's solution inspects file behavior simultaneously across multiple operating systems and more than 40 file types.
SONPO's client has not experienced downtime due to security threats since the implementation of the solution.

Log in to view content

Case Study missing?

Start adding your own!

Register with your work email and create a new case study profile for your business.

Add New Record

Related Case Studies.

Securing a Large Data Center in the EMEA Region: An IoT Case Study

A leading data-center operator in the EMEA region, with multiple facilities spanning over 25,000 square meters, faced significant security challenges. The operator experienced interruptions in their internal IT network due to unsupervised work of third-party technicians. Despite having a high-end building control system that provided 24x7 monitoring and control to all the building’s infrastructure, the data center was vulnerable from a cyber perspective as it was connected to the IT network infrastructure. The operator launched an urgent OT cyber security project that included both IT-OT network segmentation and OT network asset mapping and anomaly detection. The main objectives were to harden the security of the server systems, secure the facility’s power supply and server cooling system, strengthen the segmentation between building and operational systems, create a visual OT network map, and set up a system for presenting supply-chain attacks that may threaten the data center through equipment vendors’ maintenance activities.

Leveraging Graph Technology for Enhanced Cybersecurity: A Case Study on MITRE's CyGraph

MITRE, a federally-funded, not-for-profit company that manages seven national research and development laboratories in the United States, was grappling with the challenge of managing an influx of cybersecurity data. The constant changes in network environments were impacting the security posture of U.S. government agencies. Intrusion alerts, anti-virus warnings, and seemingly benign events like logins, service connections, and file share access were all potentially associated with adversary activity. The cybersecurity researchers at MITRE needed to go beyond rudimentary assessments of security posture and attack response. This required merging isolated data into higher-level knowledge of network-wide attack vulnerabilities and mission readiness. The challenge was not the lack of information, but the ability to assemble disparate pieces of information into an overall analytic picture for situational awareness, optimal courses of action, and maintaining mission readiness. The team also struggled with fully comprehending a given security environment and mapping all known vulnerabilities.

Enhancing Security Precision with IoT: A Case Study of Guardsman Group

Guardsman Group, a leading security company in the Caribbean, faced a significant challenge in maintaining the security of its digital infrastructure. The company provides security equipment, personnel, and systems for various businesses across the region. However, one of its offices experienced a security incident that affected all communications at that location. The existing security tools were not sufficient to provide the necessary protection, and it took hours to identify the source of the issue. This incident highlighted the need for a dynamic solution that could proactively identify threats. The company's primary concern was any disruption to its business, as it manages a significant portion of Jamaica's money and cannot afford for its operations to go down.

Data Capture for Afghanistan Forces

Electronic equipments on the field of Afghanistan provided information on the status of the vehicle and to identify potential threats surrounding it to the British Force. The monitoring and interpretation of this data requires robust and sophisticated digitization for data capture and communication.

Enhancing Security and Compliance in Remitly's Global Money Transfer Service with Fastly

Remitly, an online remittance service, was faced with the challenge of securing its proprietary global transfer network. The company needed a security solution that could meet PCI requirements and protect customers' sensitive transactions through its mobile application. The solution had to be capable of defending against new and emerging attack types without impacting performance. Remitly also had to deal with irregular traffic patterns, such as a sudden spike in account transfers from a small network segment on the Pacific coastline of South America. The company needed to determine in real time whether such traffic indicated an attack or valid requests. A traditional web application firewall (WAF) would not be able to distinguish this traffic, potentially leading to customer frustration if the IP was blacklisted.

Major Aerospace Company Automates Asset Management

The O&M division of an aerospace and global security company was using spreadsheets to manually track more than 3,000 assets assigned to students and staff. Maintaining audit trails for this high volume of equipment became increasingly time-consuming and challenging. The chore involved knowing precisely what equipment was on hand, what had been issued, its location and the name of the custodial owner of each item. Every aspect of this task was carried owner of each item. Every aspect of this task was carried out by individuals with spreadsheets. Manually documenting the full lifecycle of each asset added to the burden. This included tracking maintenance requirements and records, incidents and damages, repairs, calibrations, depreciation, and end-of-life data.

Securing a Large Data Center in the EMEA Region: An IoT Case Study

A leading data-center operator in the EMEA region, with multiple facilities spanning over 25,000 square meters, faced significant security challenges. The operator experienced interruptions in their internal IT network due to unsupervised work of third-party technicians. Despite having a high-end building control system that provided 24x7 monitoring and control to all the building’s infrastructure, the data center was vulnerable from a cyber perspective as it was connected to the IT network infrastructure. The operator launched an urgent OT cyber security project that included both IT-OT network segmentation and OT network asset mapping and anomaly detection. The main objectives were to harden the security of the server systems, secure the facility’s power supply and server cooling system, strengthen the segmentation between building and operational systems, create a visual OT network map, and set up a system for presenting supply-chain attacks that may threaten the data center through equipment vendors’ maintenance activities.

Leveraging Graph Technology for Enhanced Cybersecurity: A Case Study on MITRE's CyGraph

MITRE, a federally-funded, not-for-profit company that manages seven national research and development laboratories in the United States, was grappling with the challenge of managing an influx of cybersecurity data. The constant changes in network environments were impacting the security posture of U.S. government agencies. Intrusion alerts, anti-virus warnings, and seemingly benign events like logins, service connections, and file share access were all potentially associated with adversary activity. The cybersecurity researchers at MITRE needed to go beyond rudimentary assessments of security posture and attack response. This required merging isolated data into higher-level knowledge of network-wide attack vulnerabilities and mission readiness. The challenge was not the lack of information, but the ability to assemble disparate pieces of information into an overall analytic picture for situational awareness, optimal courses of action, and maintaining mission readiness. The team also struggled with fully comprehending a given security environment and mapping all known vulnerabilities.

Enhancing Security Precision with IoT: A Case Study of Guardsman Group

Guardsman Group, a leading security company in the Caribbean, faced a significant challenge in maintaining the security of its digital infrastructure. The company provides security equipment, personnel, and systems for various businesses across the region. However, one of its offices experienced a security incident that affected all communications at that location. The existing security tools were not sufficient to provide the necessary protection, and it took hours to identify the source of the issue. This incident highlighted the need for a dynamic solution that could proactively identify threats. The company's primary concern was any disruption to its business, as it manages a significant portion of Jamaica's money and cannot afford for its operations to go down.

Data Capture for Afghanistan Forces

Electronic equipments on the field of Afghanistan provided information on the status of the vehicle and to identify potential threats surrounding it to the British Force. The monitoring and interpretation of this data requires robust and sophisticated digitization for data capture and communication.

Enhancing Security and Compliance in Remitly's Global Money Transfer Service with Fastly

Remitly, an online remittance service, was faced with the challenge of securing its proprietary global transfer network. The company needed a security solution that could meet PCI requirements and protect customers' sensitive transactions through its mobile application. The solution had to be capable of defending against new and emerging attack types without impacting performance. Remitly also had to deal with irregular traffic patterns, such as a sudden spike in account transfers from a small network segment on the Pacific coastline of South America. The company needed to determine in real time whether such traffic indicated an attack or valid requests. A traditional web application firewall (WAF) would not be able to distinguish this traffic, potentially leading to customer frustration if the IP was blacklisted.

Major Aerospace Company Automates Asset Management

The O&M division of an aerospace and global security company was using spreadsheets to manually track more than 3,000 assets assigned to students and staff. Maintaining audit trails for this high volume of equipment became increasingly time-consuming and challenging. The chore involved knowing precisely what equipment was on hand, what had been issued, its location and the name of the custodial owner of each item. Every aspect of this task was carried owner of each item. Every aspect of this task was carried out by individuals with spreadsheets. Manually documenting the full lifecycle of each asset added to the burden. This included tracking maintenance requirements and records, incidents and damages, repairs, calibrations, depreciation, and end-of-life data.

Securing a Large Data Center in the EMEA Region: An IoT Case Study

A leading data-center operator in the EMEA region, with multiple facilities spanning over 25,000 square meters, faced significant security challenges. The operator experienced interruptions in their internal IT network due to unsupervised work of third-party technicians. Despite having a high-end building control system that provided 24x7 monitoring and control to all the building’s infrastructure, the data center was vulnerable from a cyber perspective as it was connected to the IT network infrastructure. The operator launched an urgent OT cyber security project that included both IT-OT network segmentation and OT network asset mapping and anomaly detection. The main objectives were to harden the security of the server systems, secure the facility’s power supply and server cooling system, strengthen the segmentation between building and operational systems, create a visual OT network map, and set up a system for presenting supply-chain attacks that may threaten the data center through equipment vendors’ maintenance activities.

Leveraging Graph Technology for Enhanced Cybersecurity: A Case Study on MITRE's CyGraph

MITRE, a federally-funded, not-for-profit company that manages seven national research and development laboratories in the United States, was grappling with the challenge of managing an influx of cybersecurity data. The constant changes in network environments were impacting the security posture of U.S. government agencies. Intrusion alerts, anti-virus warnings, and seemingly benign events like logins, service connections, and file share access were all potentially associated with adversary activity. The cybersecurity researchers at MITRE needed to go beyond rudimentary assessments of security posture and attack response. This required merging isolated data into higher-level knowledge of network-wide attack vulnerabilities and mission readiness. The challenge was not the lack of information, but the ability to assemble disparate pieces of information into an overall analytic picture for situational awareness, optimal courses of action, and maintaining mission readiness. The team also struggled with fully comprehending a given security environment and mapping all known vulnerabilities.

Enhancing Security Precision with IoT: A Case Study of Guardsman Group

Guardsman Group, a leading security company in the Caribbean, faced a significant challenge in maintaining the security of its digital infrastructure. The company provides security equipment, personnel, and systems for various businesses across the region. However, one of its offices experienced a security incident that affected all communications at that location. The existing security tools were not sufficient to provide the necessary protection, and it took hours to identify the source of the issue. This incident highlighted the need for a dynamic solution that could proactively identify threats. The company's primary concern was any disruption to its business, as it manages a significant portion of Jamaica's money and cannot afford for its operations to go down.

© 2015-2025 Asia Growth Partners Limited | Privacy Policy

Contact us

Let's talk!

Thank you for your message!
We will contact you soon.