Check Point today announced the availability of Canada data residency for Check Point SASE, enabling Canadian organizations to process and store key SASE security data within Canada.
This expansion follows the recent launch of Check Point WAF and further reinforces Check Point’s commitment to the Canadian market. By enabling Canada data residency for Check Point SASE, organizations gain greater control over where sensitive network and security telemetry is processed, helping organizations support their compliance efforts with Canadian privacy and data residency requirements without compromising enterprise-grade security capabilities. Key SASE data, including traffic inspection and session data, security event logs, metadata, and tenant configuration,[HK1] [IP2] [IP3] is processed and stored within Canada, giving security, IT, and compliance teams greater transparency when addressing regulatory or audit requirements around data location.
Check Point SASE’s Canada data residency capability is designed to support organizations’ compliance efforts by helping ensure that critical network and security telemetry remains within Canada.[HK4] [IP5] [HK6] Other key benefits include:
- Processing and storage of key SASE data within Canada, including traffic inspection, session data, logs, metadata, and configuration[HK7] [IP8] [IP9]
- Support for Canadian privacy and data residency requirements without reducing security capabilities
- Full access to the complete Check Point SASE platform, including Private Access (ZTNA), Internet Access (Secure Web Gateway), and SaaS Security (CASB)
- Local data handling combined with global scale, backed by Check Point’s worldwide backbone and high-availability architecture
Canada joins the United States, European Union, India, and Australia as a fully supported data residency region for Check Point SASE, reflecting the company’s continued investment in regionally aligned security architectures that meet customers where their regulatory requirements are. Check Point SASE support teams operate globally, and customer information is handled solely as required to support service delivery
Availability
Check Point SASE Canada data residency is generally available to new customers immediately. Existing customers requiring Canada data residency should contact their Check Point representative to discuss onboarding options.
Critical RCE in Hugging Face’s LeRobot
Posted in Commentary with tags Hugging Face on April 28, 2026 by itnerdResearchers disclosed a critical remote code execution flaw (CVE-2026-25874, CVSS 9.3) in Hugging Face’s open-source robotics platform LeRobot, caused by unsafe deserialization through Python’s pickle format. The issue allows an unauthenticated attacker to send malicious payloads over unsecured gRPC channels and execute arbitrary code on both the policy server and connected robot clients.
You can read more here: https://github.com/advisories/GHSA-f7vj-73pm-m822
Eli Woodward, Cyber Threat Intelligence Advisor, Team Cymru has provided this comment:
“The bigger issue here is that AI infrastructure is increasingly becoming part of the external attack surface, often without the same visibility defenders have for traditional enterprise systems. Services like this can expose privileged environments that connect directly to valuable internal resources, making them attractive entry points for both financially motivated actors and more advanced threat groups. Once an attacker gains access, the challenge becomes understanding what else that infrastructure is connected to and how quickly they can pivot. External visibility and context become critical because many of these risks originate well beyond the traditional network perimeter. This is also an interesting case where even ‘physical safety’ becomes part of the risk model. While we’ve certainly seen that before in medical devices, the implementation of AI into robotics can create a whole new level of risk we haven’t seen before.”
This is a today problem. Especially since there is no fix at present. Not good in my opinion.
Leave a comment »