Legacy access paths have a nasty habit of surviving architecture updates, migration plans, and confident diagrams. The Check Point IKEv1 case is useful because it points at a larger defender problem: attackers are not only chasing fresh bugs. They are testing whether yesterday’s compatibility debt still works today.

A bad IP can be accurate and still tell the wrong story.

MCP is not just an AI security story. It may be the first real test of agent connector supply-chain risk.

The fake remote IT worker story gets talked about like hiring fraud, sanctions exposure, or payroll diversion.

Your agent kept notes. AI-agent memory is not vibes. It is storage.

AI coding tools are becoming trusted middlemen. That gives defenders a new attack path to understand before it gets ugly.

The plugin had keys. A VS Code extension sat beside repos, tokens, terminals, and AI configs. That is not just productivity. That is inherited access.