1. Forum
  2. tqwNet
  3. TQW GENTECH

  • Check Point says VPN attacks caused by Qilin ransomware group wh

    From TechnologyDaily@1337:1/100 to All on Tuesday, June 09, 2026 14:00:26
    Check Point says VPN attacks caused by Qilin ransomware group who had a month's head start on them

    Date:
    Tue, 09 Jun 2026 12:58:11 +0000

    Description:
    A month-old VPN bug was finally fixed, but not until after Qilin had a field day with it.

    FULL STORY ======================================================================Copy link Facebook X Whatsapp Reddit Pinterest Flipboard Threads Email Share this article 0 Join the conversation Follow us Add us as a preferred source on Google Newsletter Subscribe to our newsletter Check Point patches critical
    VPN authbypass flaw (CVE202650751) used in ransomware attacks Zeroday exploited since early May, with Qilin deploying ransomware in at least one case Customers urged to apply fixes and mitigations immediately Check Point has declared it fixed a vulnerability in its VPN products being used in ransomware attacks against dozens of organizations worldwide.

    In a security advisory published, the company said it addressed an authentication bypass vulnerability that allowed remote threat actors to establish a remote access VPN connection without a valid user password. The bug is tracked as CVE-2026-50751 and was given a severity score of 9.3/10 (critical). Latest Videos From Watch full video here: Applying the fix Check Point's VP of research, Lotem Finkelstein, noted the attacks leveraging this bug started on May 7, 2026, more than a month ago. In early June, the attacks picked up in such volume that it drew the attention of Check Point, which realized on June 4 that there was an actively exploited zero-day.

    However, Finkelstein tried to frame the attacks as relatively low volume: We have observed indications that exploitation has been limited to a relatively small number of targeted organizations (several dozen globally), primarily over the past few days, he said, adding that in at least one case, the compromise was used to deploy Qilin ransomware. You may like Rapid7 observes new Palo Alto VPN flaw exploited in the wild to bypass GlobalProtect authentication Fortinet patches FortiGate Firewall vulnerabilities that allowed hackers to steal enterprise credentials FBI confirms 25 ransomware groups using First VPNs now seized services

    CVE-2026-50751 is a bug that affects Mobile Access/SSL VPNs, Remote Access VPNs, and Spark Firewalls configured to use the deprecated IKEv1 key exchange protocol.

    Check Point now urged its customers to apply the provided fixes, as well as
    to deploy mitigations and other hardening methods as soon as possible. A full list of indicators of compromise (IoC) can also be found on this link .

    The company did not discuss who the victims were, or what their industries are, but from previous reports we know that Qilin is a major player often targeting critical infrastructure providers. For example, in February 2026,
    it added the Transport Workers Union of America (TWU) Local 100 chapter to
    its data leak site, saying it broke into the organization and already leaked everything it stole onto the dark web.

    Via The Register The best antivirus for all budgets Our top picks, based on real-world testing and comparisons

    Read our full guide to the best antivirus 1. Best overall: Bitdefender Total Security 2. Best for families: Norton 360 with LifeLock 3. Best for mobile: McAfee Mobile Security Follow TechRadar on Google News and add us as a preferred source to get our expert news, reviews, and opinion in your feeds.



    ======================================================================
    Link to news story: https://www.techradar.com/pro/security/check-point-says-vpn-attacks-caused-by- qilin-ransomware-group-who-had-a-months-head-start-on-them


    --- Mystic BBS v1.12 A49 (Linux/64)
    * Origin: tqwNet Technology News (1337:1/100)