CISA ordered federal agencies to patch Check Point VPN flaw CVE-2026-50751 within 3 days. Ransomware gangs, including Qilin affiliates, have been exploiting it as a zero-day since May.
A critical Check Point VPN flaw (CVE-2026-50751) lets attackers bypass passwords entirely by exploiting the deprecated IKEv1 protocol. Active exploitation is underway against dozens of organizations, with at least one Qilin ransomware affiliate already leveraging the access.
Check Point’s VPN zero-day CVE-2026-50751 is being actively exploited by the Qilin ransomware gang. Only affects deprecated IKEv1 setups, but patching can’t wait.
