CSO Online

SolarWinds WHD zero-days from January are under attack

Analysis of real-world incidents reveals that attackers are chaining multiple flaws to compromise the ticketing and support ...
Computer Weekly

Researchers delve inside new SolarWinds RCE attack chain

Researchers at Huntress and Microsoft have shared findings from their analysis of a new SolarWinds Web Help Desk vulnerability.
NBC 10 Philadelphia

SEC sues SolarWinds over massive cyberattack, alleging fraud and weak controls

The suit, filed Monday, also names SolarWinds' chief information security officer Tim Brown, and alleges that the company overstated its cybersecurity practices and understated known vulnerabilities ...

Solarwinds WHD flaws exploited in attacks targeting servers and credentials

Two flaws are being actively used to target multiple organizations.
Opinion

Someone's attacking SolarWinds WHD to steal high‑privilege credentials - but we don't know who or how

So many CVEs, so little time Digital intruders exploited buggy SolarWinds Web Help Desk (WHD) instances in December to break into victims' IT environments, move laterally, and steal high-privilege ...