A critical vulnerability in outdated VPN protocol Internet Key Exchange version 1 (IKEv1) is being exploited by attackers to gain unauthorized access to corporate networks. Check Point has released emergency hotfixes to address the issue, which allows attackers to establish VPN sessions without a valid password. The vulnerability has been exploited in the wild since at least early May, with a significant increase in activity in recent weeks1. The affected VPN deployments are those that still use the deprecated IKEv1 protocol, highlighting the importance of updating to more secure protocols. This exploit can give attackers a foothold inside corporate networks, making it a significant concern for security teams. The fact that attackers are actively exploiting this vulnerability makes it crucial for organizations to apply the emergency hotfixes and migrate to more secure protocols to prevent ransomware-linked attacks.
Check Point warns of ransomware-linked attacks exploiting outdated VPN protocol
⚠️ Critical Alert
Why This Matters
Check Point has issued emergency hotfixes for a pair of vulnerabilities affecting VPN deployments that still use the deprecated Internet Key Exchange version 1 (IKEv1) protocol,.
References
- CSO Online. (2026, June 9). Check Point warns of ransomware-linked attacks exploiting outdated VPN protocol. CSO Online. https://www.csoonline.com/article/4182898/check-point-warns-of-ransomware-linked-attacks-exploiting-outdated-vpn-protocol.html
Original Source
CSO Online
Read original →