Summary: Chinese cybercriminals, attributed to APT41, have exploited a high-severity vulnerability in Check Point security gateways, targeting sensitive operational technology organizations globally. The attackers utilized a VPN bug to gain access to valuable intellectual property, primarily affecting manufacturing companies, including many small businesses that lack robust cybersecurity measures. The campaign highlights the vulnerability of smaller organizations to sophisticated cyber threats and the need for them to enhance their security protocols.
Affected: Manufacturing companies, particularly in operational technology sectors
Keypoints :
- Attackers exploited CVE-2024-24919, a path traversal vulnerability in Check Point security gateways, to access sensitive systems.
- The campaign primarily targeted small to medium-sized organizations, particularly in manufacturing, aviation, and finance sectors.
- Lack of cybersecurity resources in smaller businesses makes them attractive targets for advanced threat actors like APT41.
Source: https://www.darkreading.com/ics-ot-security/chinese-apt-vpn-bug-worldwide-ot-orgs