All news with #check point tag

🛡️ Check Point Research’s March–April 2026 Threat Landscape Digest documents that AI-powered attacks have moved from experimental and state-sponsored exercises into routine criminal deployment. The report details a campaign in Mexico where a single operator used commercial AI to compromise nine government agencies, leveraging persistent jailbreaks, weaponized agent configuration files, and commodified attack platforms like EvilTokens. It warns that stolen AI provider keys, rapid exploit timelines, and shadow AI use create urgent operational and supply-chain risks for organizations.

🛡️ Check Point explains why GenAI chatbots create new security risks by acting as a front door to internal systems and data. The post highlights real incidents—prompt injection, data exposure, and misleading responses—that demonstrate legal, financial, and reputational impacts. It describes how Check Point WAF extends unified application and API security into the conversational layer to detect and block malicious prompts, prevent data leaks, and control unsafe outputs.

🔍 Check Point found a 124% rise in hacktivism and ransomware across Germany, Austria, and Switzerland in 2025, with Germany accounting for roughly 82% of incidents. Defacement and DDoS drove the volume—66% of events—while ransomware comprised nearly 30%, led by Akira, Qilin, and Safepay. The report highlights identity weaknesses, exposed remote services, and insufficient patching as primary enablers, and recommends MFA, patch discipline, credential monitoring, and reduced public attack surface.

🔍 Check Point Research details a May 2026 compromise of The Gentlemen's backend that exposed chat logs, rosters, negotiation transcripts and tooling discussions. The leak shows a compact operation of roughly nine operators centered on a single administrator (zeta88 / hastalamuerte) who built the RaaS panel with AI coding assistants and participated in attacks. Initial access is mostly via unpatched edge devices or purchased credentials, and chain-victimization was observed. Check Point has notified law enforcement.

📈 April 2026 saw a sharp rebound in global cyber activity, with organizations averaging 2,201 weekly attacks — a 10% month‑over‑month rise and 8% year‑over‑year. Check Point Research attributes the surge to automation, expanded cloud and GenAI exposures and attackers exploiting larger digital footprints. Education, Government and Telecommunications were among the hardest hit. Ransomware incidents and GenAI data leakage risks intensified across regions.

⚠️ VECT 2.0 is effectively a destructive wiper rather than recoverable ransomware due to a critical implementation bug that discards key nonces during encryption. Check Point found that any file larger than 131,072 bytes loses three of four ChaCha20 nonces, rendering those chunks irrecoverable even if victims pay. The RaaS's Windows, Linux, and ESXi variants and affiliate model raise broad operational risk, but the technical flaw means payment will not restore most enterprise data.

🛡️ Check Point has been honored with Frost & Sullivan’s 2026 Technology Innovation Leadership recognition for WAF and API security. The accolade underscores a shift in application security as apps span APIs, microservices, AI-driven services and hybrid/multi‑cloud deployments. Check Point’s WAF is positioned to help organizations secure rapid DevSecOps releases, reduce attack surface and protect both traditional web and emerging AI applications.

🔒 AWS Network Firewall supports expanded managed rule groups from AWS Marketplace partners, allowing rule groups to include up to 10 million domain indicators and 1 million IP addresses. Partners including Infoblox, Lumen, and ThreatSTOP are adding protections for high-risk domains, command-and-control blocking, and sanctions compliance. Managed rules from sellers like Check Point, Fortinet, Rapid7, and Trend Micro provide ready-to-deploy, continuously updated protections and are now available in additional regions.

🔐 The shift from access-based controls to action-oriented outcome control is redefining application security as AI agents reason, act, and interact with systems. The blog outlines how Google Cloud’s Gemini Enterprise Agent Platform creates a centralized control point for agentic systems, enabling identity, access, policy enforcement, and observability. It frames outcome control as essential to manage the new operational risk posed by agents.

🚀 Check Point is rolling out an AI-powered Cloud Firewall as a Service available for preview on Google Cloud and already supported on AWS and Microsoft Azure. The managed service removes the burden of running firewall infrastructure, giving DevOps and security teams time to focus on policy management, compliance, and strategic initiatives. It delivers AI-driven security intelligence, automated policy orchestration, centralized control, and advanced threat prevention across multi-cloud environments. Demos will be shown at Check Point Booth #3101 during Google Next.

🔒 Check Point Research reports that the Gentlemen ransomware-as-a-service operation has claimed over 320 victims since mid-2025, including 240 incidents in 2026, while access to a live C2 server revealed a botnet of more than 1,570 likely corporate victims. The group targets internet-facing devices (VPNs, firewalls) and can encrypt entire networks within hours, focusing on manufacturing, technology and an increasing number of healthcare organizations. Organizations should prioritize patching, MFA, segmentation, proactive detection, and reliable offline backups to reduce exposure.

🔍 In March 2026, Check Point Research reported a modest moderation in global cyber attack volumes, with an average of 1,995 weekly attacks per organization — down 4% month over month and 5% year over year. Despite the dip, activity remains historically elevated, driven by automation, attack surface growth, and risks tied to cloud adoption and GenAI. The report also highlights a notable rebound in ransomware activity and continuing exposure for critical sectors.

🔐 Check Point Services offers PS Private Training (Custom ILT), a tailored instructor‑led program that turns complex security environments into operational control. The service replaces generic courses with environment‑specific labs, hands‑on exercises, and field‑proven best practices delivered by active Professional Services consultants. It focuses on closing hands‑on skill gaps, speeding issue resolution, and lowering operational risk even in well‑equipped organizations.

✨ The Check Point Portal has received its largest visual refresh to date, delivering a brighter, cleaner and more modern UI designed to improve task completion and reduce clutter. The redesign introduces a new design system that rethinks spacing, typography, and component hierarchy to surface what matters faster. Administrators will find familiar functionality preserved while navigation and workflows are streamlined. The update emphasizes clarity, performance, and a consistent visual language.

🧠 This article presents a blueprint architecture for securing AI data centers and AI factories as enterprises shift from consuming AI to producing it. It explains how organizations can protect LLMs, data pipelines, and compute infrastructure against emerging, AI-specific threats by combining network segmentation, identity and access controls, data governance, and advanced threat prevention. Check Point emphasizes operational practices and industrial-grade security controls to enable secure, revenue-generating AI deployments.

🔒 At RSAC, Check Point outlined how enterprises can secure their AI transformation by protecting sensitive data, models, and communications from emerging attack vectors. The company emphasized integrated controls—data loss prevention, access governance, model protection and runtime threat detection—paired with unified visibility across cloud and on‑prem environments. Check Point shared practical steps for safe AI adoption, from discovery and policy enforcement to automated response, helping organizations reduce leakage and compliance risk while enabling productive AI use.

🔒 Check Point has integrated with NVIDIA DSX Air’s cloud-based testing environment to let organizations pre-validate security-aware AI data center designs before deploying hardware. The capability enables large-scale simulation and end-to-end validation of AI Factory deployments across compute, networking, orchestration and security. By validating integrations, configurations and automation in advance, teams can reduce resource intensity and accelerate secure rollouts.

🤖 GenAI has accelerated social engineering and phishing, allowing attackers to produce hyper-personalized messages, convincingly cloned executive voices, and realistic video impersonations in seconds. Deepfake incidents have shifted from online curiosity to tangible business risk, causing financial loss and operational disruption while making identity verification on everyday collaboration platforms increasingly difficult. To address these threats, Check Point Services has expanded its training portfolio and advocates for modern defenses and smarter awareness programs designed for the realities of the AI era.

📈 The February 2026 Check Point Global Threat Intelligence report found UK organisations saw fewer weekly attacks per organisation (1,504) than the global average (2,086), but a 36% year‑on‑year increase — nearly four times the global 9.8% rise. Education, energy & utilities, government, healthcare and financial services were among the most frequently targeted UK sectors. Ransomware remained acute, with 49 active groups and a plurality of victims attributed to Qilin, Clop and The Gentlemen. The report also warned that widespread, unmanaged GenAI use is elevating inadvertent data‑exposure risk, with one in 31 prompts judged high risk.

🛡️ Check Point Services has launched CPR Act, an expert-led unit that unifies security across the full lifecycle with continuous intelligence, coordinated action, and measurable outcomes. The service addresses fragmented products and visibility gaps by connecting research, monitoring, and response so each phase feeds the next. A dedicated team of researchers, analysts, and responders delivers clear, research-based insight for decisive action.