Bleeping Computer

SolarWinds fixes 8 critical bugs in access rights audit software

SolarWinds has fixed eight critical vulnerabilities in its Access Rights Manager (ARM) software, six of which allowed attackers to gain remote code execution (RCE) on vulnerable devices. Access Rights ...
The Hacker News

CISA Adds Actively Exploited SolarWinds Serv-U DoS Flaw to KEV Catalog

CISA added CVE-2026-28318, a high-severity SolarWinds Serv-U DoS flaw, to its KEV catalog after evidence of active ...

SolarWinds Serv-U: Attackers exploit DoS vulnerability in FTP server

In SolarWinds Serv-U servers, attackers can exploit a vulnerability for denial-of-service attacks. According to CISA, they ...

The SolarWinds Hack Was More Humiliating for the Government Than We Thought

The attackers were deep inside Treasury Department email systems doing whatever they wanted.
Ars Technica

SEC sues SolarWinds and CISO, says they ignored flaws that led to major hack

The US Securities and Exchange Commission sued SolarWinds Corp. and Chief Information Security Officer Timothy Brown yesterday, alleging that they concealed security failures that led to a nearly ...
Security

From SolarWinds to PowerSchool: Growing menace of software supplier breaches

The early attacks on software suppliers, such as SolarWinds and Kasaya, shined a spotlight on the significant consequences when these companies are hit by cyber adversaries. By all measures, those ...
Wall Street Journal

SolarWinds’ Tim Brown Escaped the SEC. Future Cyber Chiefs Might Not.

When the U.S. Securities and Exchange Commission ended its yearslong pursuit of software maker SolarWinds and its cybersecurity chief last month, the wider security community breathed a collective ...