Check Point VPN Zero-Day Exploited in Qilin Ransomware Attacks

Check Point reported that CVE-2026-50751, a critical authentication bypass in IKEv1 VPN certificate validation, has been exploited in the wild since May 7. The vulnerability allows remote attackers to establish VPN sessions without passwords and has been used in attacks by a Qilin ransomware affiliate. Check Point released hotfixes, IoCs, and mitigation guidance for affected devices.