Exploitation of a recently identified information disclosure flaw in Check Point’s VPN technology has rapidly increased, affecting multiple versions of various Check Point products. The vulnerability allows attackers to access sensitive information and make lateral movements on a network. First identified in May, exploitation activity reportedly started as early as April. As of 5 June, 782 IPs worldwide targeted the flaw, and it is recommended organisations patch Check Point immediately.

Outlaw Group Uses SSH Brute-Force to Deploy Cryptojacking Malware on Linux Servers
Cybersecurity researchers have revealed details about Outlaw, an “auto-propagating” cryptocurrency mining botnet that targets SSH servers with weak credentials. The Romanian-origin malware performs SSH brute-force