Potentially allowing an malicious user to read certain information on Check Point Security Gateways once connected to the internet and enabled with remote Access VPN or Mobile Access Software Blades. A Security fix that mitigates this vulnerability is available.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
checkpoint quantum security gateway firmware r80.40 |
||
checkpoint cloudguard network security r81.20 |
||
checkpoint cloudguard network security r81.10 |
||
checkpoint cloudguard network security r81.0 |
||
checkpoint cloudguard network security r80.40 |
||
checkpoint quantum security gateway firmware r81.20 |
||
checkpoint quantum security gateway firmware r81.10 |
||
checkpoint quantum security gateway firmware r81.0 |
||
checkpoint quantum spark firmware r81.10 |
||
checkpoint quantum spark firmware r80.20 |
Iranian hackers work with ransomware gangs to extort breached orgs By Sergiu Gatlan August 28, 2024 01:22 PM 0 An Iran-based hacking group known as Pioneer Kitten is breaching defense, education, finance, and healthcare organizations across the United States and working with affiliates of several ransomware operations to extort the victims. The threat group (also tracked as Fox Kitten, UNC757, and Parisite) has been active since at least 2017 and is believed to have a suspected nexus to the Iran...
CISA warns of actively exploited Linux privilege elevation flaw By Bill Toulas May 31, 2024 03:30 PM 0 The U.S. Cybersecurity & Infrastructure Security Agency (CISA) has added two vulnerabilities in its Known Exploited Vulnerabilities (KEV) catalog, including a Linux kernel privilege elevation flaw. The high-severity flaw tracked as CVE-2024-1086 was first disclosed on January 31, 2024, as a use-after-free problem in the netfilter: nf_tables component, but was first introduced by a commit in...
Check Point VPN zero-day exploited in attacks since April 30 By Sergiu Gatlan May 29, 2024 03:39 PM 0 Threat actors have been exploiting a high-severity Check Point Remote Access VPN zero-day since at least April 30, stealing Active Directory data needed to move laterally through the victims' networks in successful attacks. Check Point warned customers on Monday that attackers are targeting their security gateways using old VPN local accounts with insecure password-only authentication. The ...
Check Point releases emergency fix for VPN zero-day exploited in attacks By Bill Toulas May 29, 2024 09:31 AM 0 Check Point has released hotfixes for a VPN zero-day vulnerability exploited in attacks to gain remote access to firewalls and attempt to breach corporate networks. On Monday, the company first warned about a spike in attacks targeting VPN devices, sharing recommendations on how admins can protect their devices. Later, it discovered the source of the problem, a zero-day flaw that hacke...
Topics Security Off-Prem On-Prem Software Offbeat Special Features Vendor Voice Vendor Voice Resources Also, free pianos are the latest internet scam bait, Cooler Master gets pwned, and some critical vulnerabilities
Infosec in brief Cybersecurity software vendor Check Point is warning customers to update their software immediately in light of a zero day vulnerability under active exploitation. Check Point announced early last week that it had detected "a small number of login attempts" targeting some of its customers' VPN environments. The company later said it discovered the root cause, assigned a CVE (CVE-2024-24919, CVSS 8.6), and urged customers to update their software as soon as possible. The vu...
Topics Security Off-Prem On-Prem Software Offbeat Special Features Vendor Voice Vendor Voice Resources The government-backed crew also enjoys ransomware as a side hustle
Iranian government-backed cybercriminals have been hacking into US and foreign networks as recently as this month to steal sensitive data and deploy ransomware, and they're breaking in via vulnerable VPN and firewall devices from Check Point, Citrix, Palo Alto Networks and other manufacturers, according to Uncle Sam. In a joint security advisory issued today, the Federal Bureau of Investigation (FBI), Cybersecurity and Infrastructure Security Agency (CISA), and the Department of Defense Cyber Cr...