Check Point links VPN zero-day attacks to Qilin ransomware gang
Check Point said the flaw let attackers bypass VPN authentication and confirmed at least one post-compromise case linked to a Qilin affiliate.
8 Articles
8 Articles
Ransomware crims got a month-long head start on Check Point VPN 0-day that now has a fix
Check Point released an emergency fix on Monday for a critical authentication bypass vulnerability affecting its Remote Access VPN and Mobile Access deployments - but attackers, including ransomware criminals, got a month-long head start. Attacks against the bug, tracked as CVE-2026-50751, began on May 7, according to Check Point VP of research Lotem Finkelstein, and picked up in early June. The security software vendor spotted suspicious activi…
BleepingComputer
cybernoz.comCheck Point links VPN zero-day attacks to Qilin ransomware gang
Israeli cybersecurity company Check Point has released security updates to patch a critical flaw affecting Remote Access VPN and Mobile Access deployments, which was exploited in zero-day attacks.
Check Point VPN Zero-Day Under Active Exploitation by Ransomware Operators
Check Point has disclosed active in-the-wild exploitation of a critical authentication bypass vulnerability, tracked as CVE-2026-50751, impacting Remote Access VPN and Mobile Access deployments configured with the deprecated IKEv1 key exchange protocol. The flaw, assigned a CVSS score of 9.3, allows unauthenticated attackers to establish VPN sessions without valid credentials by exploiting a logic flaw […] The post Check Point VPN Zero-Day Under…
Check Point VPN 0-day Vulnerability Exploited in the Wild to Deploy Ransomware
Check Point Research has uncovered active exploitation of CVE-2026-50751, a critical authentication bypass vulnerability (CVSS 9.3) in Check Point Remote Access VPN and Mobile Access deployments, with confirmed post-compromise activity linked to the Qilin ransomware gang. CVE-2026-50751 targets deployments configured to use the deprecated IKEv1 key exchange protocol. By exploiting a logic flaw in certificate validation, an unauthenticated remote…
Organizations are increasingly relying on VPNs to connect collaborators, affiliates and critical environments. Therefore, any failure in Check Point's VPN deserves immediate attention, especially when there is evidence of active exploitation by ransomware criminals. Check Point has released corrections to two critical vulnerabilities, CVE-2026-50751 and CVE-2026-50752, which affect VPN implementations configured with the IKEv1 legacy protocol. A…
Coverage Details
Bias Distribution
- 100% of the sources are Center
Factuality
To view factuality data please Upgrade to Premium
