A cybercriminal using the alias CoreInjection has claimed to have stolen a trove of highly sensitive data from cybersecurity powerhouse Check Point. However, the company strongly refutes the hacker’s assertions, calling them exaggerated and outdated.
On Sunday evening, CoreInjection posted on a cybercrime forum, alleging they had accessed internal network maps, architectural diagrams, hashed and plaintext passwords, employee contact details, and even proprietary source code.
The post included screenshots that seemingly showed access to Check Point’s Infinity security management portal, with the hacker purportedly granting themselves the ability to modify two-factor authentication settings.
ALSO READ: Now Open: Pan-India Registration for Fraud Investigators!
Despite the alarming claims, Check Point maintains there was never a security risk to its customers or employees. The company asserts that the alleged breach is an old and contained incident affecting only a few organizations.
The breach, which occurred in December 2024, was due to compromised credentials for a portal account with limited access. The affected data reportedly included a small set of account names, three customers’ contact names, and some employee email addresses—far from the expansive breach CoreInjection suggested.
A cybersecurity expert , initially found the hacker’s screenshots convincing, noting that CoreInjection has a history of targeting Israeli companies and a record of leaking legitimate data. However, following Check Point’s statement, he acknowledged that while unanswered questions remain, the breach appears to be much smaller in scope than first feared.
One screenshot shared by the hacker displayed an admin panel listing over 120,000 accounts, including 18,824 active, paying users. However,t here is a caution against the panic urging people to differentiate between what the hacker claimed and what was actually shown in the leaked images.
ALSO READ: Empanelment for Speakers, Trainers, and Cyber Security Experts Opens at Future Crime Research Foundation
The impact of this incident remains uncertain, but it does not seem to compromise Check Point’s intellectual property or customers’ systems.
While the cybercriminal community buzzes over the hacker’s claims, Check Point stands firm in its denial of any significant breach. Whether CoreInjection is overstating their haul or revealing an underreported security incident, this saga isn’t over yet.