Chinese APT Uses VPN Bug to Exploit Worldwide OT Orgs

Chinese cybercriminals, likely APT41, exploited a vulnerability in Check Point security gateways to gain access to dozens of operational technology (OT) organizations worldwide. The campaign, which began shortly after the vulnerability was disclosed, targeted specific industries, including aviation and aerospace supply chain manufacturers, with the goal of stealing valuable intellectual property. The attackers focused on small OT organizations, which often lack cybersecurity personnel and resources, making them vulnerable to advanced threat actors.