#HotfixAlert

Attacks Surge on Check Point’s Recent VPN Zero-Day Flaw

by

June 6, 2024 at 04:36PM A recent spike in exploit activity is targeting a critical flaw (CVE-2024-24919) in Check Point’s VPN technology. Attack attempts began in April, with a major increase after a public proof-of-concept was released. Over 13,000 exposed systems are at risk, prompting urgent patching. The US government has issued a deadline for … Read more

Sophos backports RCE fix after attacks on unsupported firewalls

by

December 12, 2023 at 12:36PM Sophos issued a backported security update for CVE-2022-3236 for end-of-life firewall firmware versions due to active exploitation by hackers. The flaw allows remote code execution in the User Portal and Webadmin. Despite automatic updates, over 4,000 devices remained vulnerable. Sophos advised updating to specific versions or using workarounds to mitigate … Read more