Exploitation of a recently identified information disclosure flaw in Check Point’s VPN technology has rapidly increased, affecting multiple versions of various Check Point products. The vulnerability allows attackers to access sensitive information and make lateral movements on a network. First identified in May, exploitation activity reportedly started as early as April. As of 5 June, 782 IPs worldwide targeted the flaw, and it is recommended organisations patch Check Point immediately.
GuidePoint warns of Python backdoor used in ransomware
GuidePoint Security identified a threat actor using a Python-based backdoor to persistently access breached endpoints and release RansomHub encryptors across compromised networks. The backdoor was