.webp)
A critical vulnerability categorized as CVE-2024-24919 (CVSS 3.1: 7.5) has been identified in multiple Check Point products by the Check Point Research Division. This zero-day vulnerability allows attackers to access specific information on gateways connected to the internet with Remote Access VPN or Mobile Access enabled. On May 24th, Check Point detected increased threat actor activity targeting Remote Access VPN environments. On May 27th, a customer reported an attack leveraging this vulnerability.
This vulnerability enables attackers to gather sensitive information from targeted gateways, particularly those using insecure password-only authentication methods. The exploitation of this vulnerability leads to a complete loss of confidentiality.
Affected Systems:
Check Point has released hotfixes for CVE-2024-24919, available through the Security Gateway portal. To apply the update:
Manual downloads are available for:
For systems using IPSec VPN software blade solely for Site-to-Site purposes, this vulnerability does not apply. In cases where the update cannot be applied, updating the Active Directory password used by the Security Gateway can enhance security.
If you use Check Point products with Remote Access VPN or Mobile Access blades, hotfixes are available to mitigate this vulnerability. Ensure that systems using password-only authentication follow the remediation steps to prevent exploitation. Threat actors are particularly targeting these configurations.
Exploitation of this vulnerability can result in the complete loss of confidentiality, leading to the exposure and potential exfiltration of sensitive information. This can cause significant reputational damage and data loss for affected organizations.
For further details and updates, refer to Check Point's security advisories and bulletins.This report provides crucial steps to protect your systems from a significant vulnerability.
On this episode of the CyberWatch podcast, there are updates to software across the application and OS spectrum. New malicious campaigns are threatening victims of all sizes, and researchers have performed dissections on malware to give defenders new clues about just what it is they're fighting. All this today, in CyberWatch.
As we conclude our 'ransomware readiness week' of this Cybersecurity Awareness Month, it's time to take a critical look at your organization's defenses. Ransomware attacks are becoming more sophisticated, and no business is immune. In our latest article, we explore essential strategies to bolster your ransomware preparedness. Don't miss this vital information to help protect your business from emerging threats.
Ethical hacking has become an essential response to an IT industry kept on its toes by a spectrum of bad actors with malicious intent. This article introduces two prominent methodologies that help the good guys fight back: penetration testing (pen-testing) and red teaming. Learn more here.
Host Geoff Hancock was joined by guests Mike Rush, Director of Threat Intelligence at Access Point Consulting; and Evie Manning, Senior Director of Threat Hunting and Intelligence at Access Point Consulting. Together, they talked about cyber threat intelligence and the applications that can make it work for small and medium-sized businesses.
