- A pirate claims to sell stolen data to check point
- The security company claims that the data comes from a former violation which has been processed
- But some security experts are not convinced by this explanation
A hacker claims to have stolen a “very sensitive” data set from the control point – but the company seeks to exercise all the concerns that users could have.
The cybercriminal, according to the name of Coreinjection, has published on the set of data files compromised on a cybercrime forum – and alleys that the information contains information of user identification, information on the contract of employees and internal network cards, among others.
A Check Point spokesman said Techradar Pro That they “would not really call it a violation”, and added that it was “an account with limited access to a portal”. The company’s declaration guarantees that this is an “old, known and very precise event”, which has involved only a few organizations, and “does not include systems, production or customer architecture”.
“If it’s completely false, I would be surprised”
However, concerns have been raised in the cybersecurity industry, with Hudson Rock CTO, Alon Gal saying that there is a “high certainty” that the check point has been hacked, a threat actor seeming to have “accessed an administrator account with serious privileges”.
While the researcher maintains that he would be surprised, he also explains that the violation is “not yet officially confirmed”.
In Check Point’s official response, he confirmed that a violation occurred, but that it was a long time ago, and that the pirate recycles the old information which “falsely implies exaggerated affirmations that have never occurred”.
“It was managed months ago and did not include the detailed description on this message. These organizations were updated and managed at that time, and it is not more than the regular recycling of the old information. We think that at no time was a security risk to check the point, its customers or its employees”, the spokesperson did not tell us.
In 2024, Check Point VPN The software was targeted by hackers in order to access the corporate networks, although these attempts were largely unsuccessful, and the checkpoint described a simple and easy solution.
Via the register
