ZDNet

SolarWinds: The more we learn, the worse it looks

Russia, we now know, used SolarWinds' hacked program to infiltrate at least 18,000 government and private networks. The data within these networks, user IDs, passwords, financial records, source code, ...
ZDNet

A second hacking group has targeted SolarWinds systems

As forensic evidence is slowly being unearthed in the aftermath of the SolarWinds supply chain attack, security researchers have discovered a second threat actor that has exploited the SolarWinds ...
Bleeping Computer

SolarWinds patches critical vulnerabilities in the Orion platform

Even with the security updates prompted by the recent SolarWinds Orion supply-chain attack, researchers still found some glaring vulnerabilities affecting the platform, one of them allowing code ...
Government Executive

House Bill Tasks CISA With SolarWinds Report

One lawmaker is looking for a full accounting of the damage done to federal networks as a result of the supply chain hack perpetrated via the SolarWinds Orion platform in 2020. Rep. Ritchie Torres ...
Newsweek

Ex-SolarWinds Adviser Warned Company of Security Issues in 2017: ‘Incredibly Easy Target to Hack’

A former security adviser at SolarWinds warned the tech company back in 2017 that it was not taking adequate steps to address cybersecurity. News broke earlier this month that SolarWinds Orion ...
CRN

Review: SolarWinds Gets It Right With Orion 9

The wrinkles reviewers encountered with the installation and configuration of a previous version of NPM have been smoothed out in Orion 9. Total time for installation and configuration of the product ...
CRN

Fidelis Targeted By SolarWinds Hackers After Installing Orion

Fidelis Cybersecurity was a target of interest to the SolarWinds hackers after downloading an evaluation copy of trojanized SolarWinds Orion network monitoring software in May, the company disclosed ...
Fast Company

Why security experts were blindsided by the SolarWinds attack

The SolarWinds cyberattack on U.S. government agencies and private organizations was and is frightening in its scale and success. It proved no match for the government agencies charged with defending ...
NBC News

More exploitable flaws found in SolarWinds software, says cybersecurity firm

WASHINGTON — A cybersecurity company has identified three new "critical" flaws in software produced by SolarWinds, the company that was exploited in what U.S. officials said last year was a massive ...
Ars Technica

SolarWinds patches vulnerabilities that could allow full system control

SolarWinds, the previously little-known company whose network-monitoring tool Orion was a primary vector for one of the most serious breaches in US history, has pushed out fixes for three severe ...
Nextgov

CISA: SolarWinds Hackers Got Into Networks by Guessing Passwords

Perpetrators of a widespread, intelligence-gathering campaign used common hacker techniques to get through passwords in addition to more sophisticated methods, according to an update to the ...
eWeek

Lesson from SolarWinds Hack: Why IT Should Rethink On-Premises Tooling

eWeek content and product recommendations are editorially independent. We may make money when you click on links to our partners. Learn More It’s entirely possible that the U.S. government has ...