"Check Point Issues Emergency Fix for VPN Zero-Day Amid Rising Attacks"

May 29, 2024 at 03:16 PM

•

1 min read

"Check Point Issues Emergency Fix for VPN Zero-Day Amid Rising Attacks" — Photo: The Hacker News

TL;DR Summary

Check Point has issued a warning about a zero-day vulnerability (CVE-2024-24919) in its Network Security gateway products, which has been actively exploited. The flaw, with a CVSS score of 7.5, affects various Quantum and CloudGuard products and allows attackers to read information on Internet-connected gateways with remote access VPN or mobile access enabled. Hotfixes are available for affected versions. The vulnerability has been exploited since April 30, 2024, allowing unauthorized actors to extract password hashes and Active Directory data, leading to potential lateral movement within networks.

Topics:business #check-point #cybersecurity #enterprise-security-vulnerability #exploitation #vpn #zero-day

Share this article

Check Point Warns of Zero-Day Attacks on its VPN Gateway Products The Hacker News
Attackers Target Check Point VPNs to Access Corporate Networks Dark Reading
Check Point releases emergency fix for VPN zero-day exploited in attacks BleepingComputer
Attackers are probing Check Point Remote Access VPN devices Help Net Security
More than half of 2023's ransomware attacks exploited remote access vulnerabilities NU PropertyCasualty360

Reading Insights

Total Reads

Unique Readers

Time Saved

2 min

vs 3 min read

Condensed

85%

563 → 86 words

Want the full story? Read the original article

Read on The Hacker News

JavaScript Required

tl;dr daily news requires JavaScript to be enabled. Please enable JavaScript in your browser settings.

Related Sources

Reading Insights