SecurityWeek

Fresh SolarWinds Vulnerability Exploited in Attacks

CISA warns that a fresh critical-severity SolarWinds vulnerability leading to unauthenticated RCE has been exploited in attacks.
Computer Weekly

Researchers delve inside new SolarWinds RCE attack chain

Researchers at Huntress and Microsoft have shared findings from their analysis of a new SolarWinds Web Help Desk vulnerability.
SecurityWeek

Recent SolarWinds Flaws Potentially Exploited as Zero-Days

Attacks targeting SolarWinds Web Help Desk instances in December 2025 might have exploited recently patched vulnerabilities as zero-days.
WTVF

Microsoft: Group behind SolarWinds hack targets 150 organizations in new attack

REDMOND, Wash. — The same Russian group behind the SolarWinds hacking campaign launched another wave of attacks this week on government agencies, think tanks, consultants, and non-governmental ...
CSO Online

SolarWinds WHD zero-days from January are under attack

Analysis of real-world incidents reveals that attackers are chaining multiple flaws to compromise the ticketing and support ...
Microsoft

Analysis of active exploitation of SolarWinds Web Help Desk

We are seeing exploitation of SolarWinds Web Help Desk via CVE‑2025‑40551 and CVE‑2025‑40536 that can lead to domain ...
SDxCentral

SolarWinds, free from SEC charges, bravely takes on risky AI era

The U.S. Securities and Exchange Commission (SEC) has dropped remaining litigation against software vendor SolarWinds regarding the infamous hack that affected the likes of Nvidia, Cisco, Ciena, and ...
CRN

SolarWinds Heads To SEC Settlement Over Sunburst Cyberattack

SolarWinds and the SEC have to provide the court with a written status report on Sept. 12 if the settlement has not been reached by then. A federal district judge signed off on a request by SolarWinds ...