SolarWinds

SEC fines tech companies for misleading SolarWinds disclosures

Avaya, Check Point, Compliance, cyber risk, Don't miss, Mimecast, News, SolarWinds, Unisys /

SEC fines tech companies for misleading SolarWinds disclosures 2024-10-25 at 15:07 By Help Net Security The Securities and Exchange Commission charged four current and former public companies – Unisys Corp., Avaya Holdings Corp., Check Point Software Technologies Ltd, and Mimecast Limited – with making materially misleading disclosures regarding cybersecurity risks and intrusions. The SEC also […]

React to this headline:

Loading spinner

SEC fines tech companies for misleading SolarWinds disclosures Read More »

SolarWinds Releases Patches for High-Severity Vulnerabilities

SolarWinds, vulnerability /

SolarWinds Releases Patches for High-Severity Vulnerabilities 2024-10-17 at 16:46 By daksh sharma Overview SolarWinds has issued an important security update advisory outlining the latest vulnerability patches released for its products. This advisory provides insights into recently disclosed vulnerabilities affecting the SolarWinds range and emphasizes the need for organizations to take immediate action to protect their

React to this headline:

Loading spinner

SolarWinds Releases Patches for High-Severity Vulnerabilities Read More »

PoC for critical SolarWinds Web Help Desk vulnerability released (CVE-2024-28987)

CVE, Don't miss, education, enterprise, Government, Horizon3.ai, Hot stuff, MSP, News, PoC, SMBs, SolarWinds, vulnerability /

PoC for critical SolarWinds Web Help Desk vulnerability released (CVE-2024-28987) 2024-09-25 at 17:17 By Zeljka Zorz Details about and proof-of-concept (PoC) exploit code for CVE-2024-28987, a recently patched SolarWinds Web Help Desk (WHD) vulnerability that could be exploited by unauthenticated attackers to remotely read and modify all help desk ticket details, are now public. “When

React to this headline:

Loading spinner

PoC for critical SolarWinds Web Help Desk vulnerability released (CVE-2024-28987) Read More »

SolarWinds Patches Critical Vulnerability in Access Rights Manager

SolarWinds, Vulnerabilities, vulnerability /

SolarWinds Patches Critical Vulnerability in Access Rights Manager 2024-09-16 at 12:31 By Ionut Arghire SolarWinds has announced patches for a critical-severity remote code execution vulnerability in Access Rights Manager. The post SolarWinds Patches Critical Vulnerability in Access Rights Manager appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View Original Source

React to this headline:

Loading spinner

SolarWinds Patches Critical Vulnerability in Access Rights Manager Read More »

Another critical SolarWinds Web Help Desk bug fixed (CVE-2024-28987)

CVE, Don't miss, enterprise, Hot stuff, MSP, News, SMBs, SolarWinds, vulnerability /

Another critical SolarWinds Web Help Desk bug fixed (CVE-2024-28987) 2024-08-23 at 13:31 By Zeljka Zorz A week after SolarWinds released a fix for a critical code-injection-to-RCE vulnerability (CVE-2024-28986) in Web Help Desk (WHD), another patch for another critical flaw (CVE-2024-28987) in the company’s IT help desk solution has been pushed out. CVE-2024-28987 CVE-2024-28987 stems from

React to this headline:

Loading spinner

Another critical SolarWinds Web Help Desk bug fixed (CVE-2024-28987) Read More »

SolarWinds Leaks Credentials in Hotfix for Exploited Web Help Desk Flaw

exploited, patch, SolarWinds, Vulnerabilities /

SolarWinds Leaks Credentials in Hotfix for Exploited Web Help Desk Flaw 2024-08-23 at 11:17 By Ionut Arghire SolarWinds has issued a Web Help Desk hotfix to remove hardcoded credentials from last week’s hotfix for a critical-severity vulnerability. The post SolarWinds Leaks Credentials in Hotfix for Exploited Web Help Desk Flaw appeared first on SecurityWeek. This

React to this headline:

Loading spinner

SolarWinds Leaks Credentials in Hotfix for Exploited Web Help Desk Flaw Read More »

SolarWinds Web Help Desk Vulnerability Possibly Exploited as Zero-Day

Featured, SolarWinds, Vulnerabilities, Zero-Day /

SolarWinds Web Help Desk Vulnerability Possibly Exploited as Zero-Day 2024-08-16 at 13:17 By Ionut Arghire The US cybersecurity agency CISA warns that a recent SolarWinds Web Help Desk vulnerability has been exploited in the wild. The post SolarWinds Web Help Desk Vulnerability Possibly Exploited as Zero-Day appeared first on SecurityWeek. This article is an excerpt

React to this headline:

Loading spinner

SolarWinds Web Help Desk Vulnerability Possibly Exploited as Zero-Day Read More »

SolarWinds Issues Hotfix for Critical Web Help Desk Vulnerability

SolarWinds, Vulnerabilities, vulnerability /

SolarWinds Issues Hotfix for Critical Web Help Desk Vulnerability 2024-08-15 at 16:32 By Ionut Arghire SolarWinds has released a hotfix for a critical Java deserialization remote code execution vulnerability in Web Help Desk. The post SolarWinds Issues Hotfix for Critical Web Help Desk Vulnerability appeared first on SecurityWeek. This article is an excerpt from SecurityWeek

React to this headline:

Loading spinner

SolarWinds Issues Hotfix for Critical Web Help Desk Vulnerability Read More »

Judge Dismisses Major SEC Charges Against SolarWinds and CISO 

Application Security, CISO, CISO Strategy, Nation-State, SolarWinds, SUNBURST, Supply Chain Security /

Judge Dismisses Major SEC Charges Against SolarWinds and CISO  2024-07-20 at 00:31 By Ryan Naraine Judge dismissed SEC lawsuit charging SolarWinds and CISO Timothy Brown with hiding security problems before and after the SUNBURST supply chain compromise. The post Judge Dismisses Major SEC Charges Against SolarWinds and CISO  appeared first on SecurityWeek. This article is

React to this headline:

Loading spinner

Judge Dismisses Major SEC Charges Against SolarWinds and CISO  Read More »

SolarWinds Patches Critical Vulnerabilities in Access Rights Manager

SolarWinds, Vulnerabilities /

SolarWinds Patches Critical Vulnerabilities in Access Rights Manager 2024-07-19 at 14:01 By Ionut Arghire SolarWinds has released patches for 13 vulnerabilities in Access Rights Manager, including eight critical bugs. The post SolarWinds Patches Critical Vulnerabilities in Access Rights Manager appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View Original Source

React to this headline:

Loading spinner

SolarWinds Patches Critical Vulnerabilities in Access Rights Manager Read More »

Recent SolarWinds Serv-U Vulnerability Exploited in the Wild

exploited, SolarWinds, Vulnerabilities /

Recent SolarWinds Serv-U Vulnerability Exploited in the Wild 2024-06-21 at 16:32 By Ionut Arghire Threat actors are exploiting a recent path traversal vulnerability in SolarWinds Serv-U using public PoC code. The post Recent SolarWinds Serv-U Vulnerability Exploited in the Wild appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View Original

React to this headline:

Loading spinner

Recent SolarWinds Serv-U Vulnerability Exploited in the Wild Read More »

SolarWinds fixes severe Serv-U vulnerability (CVE-2024-28995)

CVE, Don't miss, enterprise, file-sharing, Hot stuff, News, SolarWinds, vulnerability /

SolarWinds fixes severe Serv-U vulnerability (CVE-2024-28995) 2024-06-07 at 20:01 By Zeljka Zorz SolarWinds has fixed a high-severity vulnerability (CVE-2024-28995) affecting its Serv-U managed file transfer (MFT) server solution, which could be exploited by unauthenticated attackers to access sensitive files on the host machine. About CVE-2024-28995 Serv-U MFT Server is a widely used enterprise solution that

React to this headline:

Loading spinner

SolarWinds fixes severe Serv-U vulnerability (CVE-2024-28995) Read More »

SolarWinds Patches High-Severity Vulnerability Reported by NATO Pentester

SolarWinds, Vulnerabilities /

SolarWinds Patches High-Severity Vulnerability Reported by NATO Pentester 2024-06-07 at 14:01 By Ionut Arghire SolarWinds has released patches for high-severity vulnerabilities in Serv-U and the SolarWinds Platform. The post SolarWinds Patches High-Severity Vulnerability Reported by NATO Pentester appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View Original Source React to

React to this headline:

Loading spinner

SolarWinds Patches High-Severity Vulnerability Reported by NATO Pentester Read More »

Microsoft Says Russian Gov Hackers Stole Source Code After Spying on Executive Emails

APT, Incident Response, Malware & Threats, Microsoft, Midnight Blizzard, Nation-State, SolarWinds /

Microsoft Says Russian Gov Hackers Stole Source Code After Spying on Executive Emails 2024-03-08 at 21:34 By Ryan Naraine Microsoft says the Midnight Blizzard APT group may still be poking around its internal network after stealing source code, spying on emails. The post Microsoft Says Russian Gov Hackers Stole Source Code After Spying on Executive

React to this headline:

Loading spinner

Microsoft Says Russian Gov Hackers Stole Source Code After Spying on Executive Emails Read More »

RCE vulnerabilities fixed in SolarWinds enterprise solutions

access management, Don't miss, enterprise, Hot stuff, News, SolarWinds, vulnerability /

RCE vulnerabilities fixed in SolarWinds enterprise solutions 2024-02-19 at 07:01 By Zeljka Zorz SolarWinds has released updates for Access Rights Manager (ARM) and (Orion) Platform that fix vulnerabilities that could allow attackers to execute code on vulnerable installations. SolarWinds ARM flaws fixed SolarWinds, the company whose Orion IT administration platform has been infamously compromised in

React to this headline:

Loading spinner

RCE vulnerabilities fixed in SolarWinds enterprise solutions Read More »

SolarWinds offers complete hybrid visibility across on-premises and cloud networks

Industry news, SolarWinds /

SolarWinds offers complete hybrid visibility across on-premises and cloud networks 2024-02-07 at 16:01 By Industry News SolarWinds announced enhancements to its SaaS-based and self-hosted, on-premises observability solutions built to monitor and observe complex, distributed environments from anywhere. The AI-powered enhancements enable teams to manage on-prem, hybrid, or cloud-native ecosystems with full-stack visibility across networks, infrastructure,

React to this headline:

Loading spinner

SolarWinds offers complete hybrid visibility across on-premises and cloud networks Read More »

SolarWinds expands observability offering to provide enterprises with full visibility into databases

Industry news, SolarWinds /

SolarWinds expands observability offering to provide enterprises with full visibility into databases 14/11/2023 at 18:03 By Industry News SolarWinds announced major enhancements in its Database Observability capability within the cloud-based SolarWinds Observability platform. SolarWinds Database Observability provides full visibility into open-source, cloud-enabled, and NoSQL databases to identify and address costly and critical threats to their

React to this headline:

Loading spinner

SolarWinds expands observability offering to provide enterprises with full visibility into databases Read More »

SolarWinds and CISO accused of fraud, control failures

CISO, Government, law, News, SolarWinds, USA /

SolarWinds and CISO accused of fraud, control failures 31/10/2023 at 11:16 By Help Net Security The Securities and Exchange Commission announced charges against SolarWinds and its CISO, Timothy G. Brown, for fraud and internal control failures relating to allegedly known cybersecurity risks and vulnerabilities. The complaint alleges that, from at least its October 2018 initial

React to this headline:

Loading spinner

SolarWinds and CISO accused of fraud, control failures Read More »

SEC Charges SolarWinds and Its CISO With Fraud and Cybersecurity Failures

CISO, CISO Strategy, Featured, Incident Response, SolarWinds, SUNBURST, Tracking & Law Enforcement /

SEC Charges SolarWinds and Its CISO With Fraud and Cybersecurity Failures 31/10/2023 at 05:01 By Mike Lennon The SEC filed charges against SolarWinds and its CISO over misleading investors about its cybersecurity practices and known risks. The post SEC Charges SolarWinds and Its CISO With Fraud and Cybersecurity Failures appeared first on SecurityWeek. This article

React to this headline:

Loading spinner

SEC Charges SolarWinds and Its CISO With Fraud and Cybersecurity Failures Read More »

SolarWinds Patches High-Severity Flaws in Access Rights Manager

CVE-2023-35182, CVE-2023-35185, CVE-2023-35187, Identity & Access, Network Security, SolarWinds, Vulnerabilities /

SolarWinds Patches High-Severity Flaws in Access Rights Manager 23/10/2023 at 21:49 By Ionut Arghire SolarWinds patches high-severity flaws in its Access Rights Manager product, including three unauthenticated remote code execution issues. The post SolarWinds Patches High-Severity Flaws in Access Rights Manager appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View

React to this headline:

Loading spinner

SolarWinds Patches High-Severity Flaws in Access Rights Manager Read More »

Scroll to Top