Bleeping Computer

Chinese hackers use new SolarWinds zero-day in targeted attacks

China-based hackers known to target US defense and software companies are now targeting organizations using a vulnerability in the SolarWinds Serv-U FTP server. Today, SolarWinds released a security ...
HotHardware

Microsoft Discovers 0-Day Vulnerability Actively Exploited In SolarWinds FTP Product

Yesterday, Microsoft reported that it had detected a 0-day remote code execution exploit being used in the wild against SolarWinds’ Serv-U FTP product. The vulnerability that allowed this exploit has ...
Bleeping Computer

SolarWinds patches critical vulnerabilities in the Orion platform

Even with the security updates prompted by the recent SolarWinds Orion supply-chain attack, researchers still found some glaring vulnerabilities affecting the platform, one of them allowing code ...
Threat Post

SolarWinds Orion Bug Allows Easy Remote-Code Execution and Takeover

The by-now infamous company has issued patches for three security vulnerabilities in total. Three serious vulnerabilities have been found in SolarWinds products: Two in the Orion User Device Tracker ...