Check Point has identified a critical vulnerability (CVE-2026-50751) in Remote Access VPN and Mobile Access deployments that has been exploited in zero-day attacks linked to the Qilin ransomware gang. The flaw allows unauthenticated remote attackers to bypass authentication, impacting organizations that still use the deprecated IKEv1 key exchange protocol, prompting Check Point to urge affected customers to apply security updates immediately.
Check Point has identified a critical zero-day vulnerability (CVE-2026-50751) in their Remote Access VPN and Mobile Access deployments, exploited by the Qilin ransomware gang. For cybersecurity professionals, it is crucial to immediately apply the available security updates, especially for systems using the deprecated IKEv1 protocol, and consider transitioning to IKEv2 with mandatory Machine Certificate Authentication to mitigate potential attacks.