Check Point confirms breach, but says it was 'old' data and crook made 'false' claims

A digital burglar is claiming to have nabbed a trove of "highly sensitive" data from Check Point - something the American-Israeli security biz claims is a huge exaggeration.

A cybercrime forum user going by the name CoreInjection advertised "a highly sensitive dataset" allegedly comprised of Check Point files on Sunday evening. They claimed this contained internal network maps and architectural diagrams, user credentials (including hashed and plaintext passwords), employee contact information, and proprietary source code.

Screenshots shared in the post appear to show CoreInjection inside a Check Point admin Infinity (security management) portal, supposedly granting themselves the ability to change users' two-factor authentication settings.

Check Point denies there was ever a security risk to customers and employees, claiming the orgs affected were "updated" at the time, and the crim was merely recycling old information.

The Register contacted Check Point for answers to various questions, many of which it did not respond ...