SolarWinds has patched four critical Serv-U remote code execution vulnerabilities that could grant attackers root access to unpatched servers.
Researchers at Huntress and Microsoft have shared findings from their analysis of a new SolarWinds Web Help Desk vulnerability.
According to security researchers, attackers are currently exploiting critical malware vulnerabilities in SolarWinds Web Help Desk.
Attacks targeting SolarWinds Web Help Desk instances in December 2025 might have exploited recently patched vulnerabilities as zero-days.
Analysis of real-world incidents reveals that attackers are chaining multiple flaws to compromise the ticketing and support application.
Organizations that have exposed their instances of Web Help Desk to the public Internet have inadvertently made them prime ...
CISA has expanded its KEV catalog with new SolarWinds, Notepad++, and Apple flaws, including two exploited as zero-days.
Four newly disclosed critical CVEs could allow attackers to create privileged accounts and execute arbitrary code, and they reinforce SolarWinds’ status as a high-value target.
Opinion
15don MSNOpinion
Someone's attacking SolarWinds WHD to steal high‑privilege credentials - but we don't know who or how
So many CVEs, so little time Digital intruders exploited buggy SolarWinds Web Help Desk (WHD) instances in December to break into victims' IT environments, move laterally, and steal high-privilege ...
Security researchers warn of active attacks on SolarWinds Web Help Desk. Malicious actors are exploiting vulnerabilities to infiltrate systems and then ...
Two flaws are being actively used to target multiple organizations.
Reacting to news reports claiming hackers may have used Czech software firm JetBrains’ TeamCity tool as an initial infection vector during the attack against SolarWinds, JetBrains CEO Maxim Shafirov ...
Some results have been hidden because they may be inaccessible to you
Show inaccessible results