GitHub

chvasu/SANS_FOR572_GNFA_Exam_Notes

Why network forensics? Identify TTPs (Tactics, Techniques, Procedures) Occam’s Razor doesn’t always apply: Confuse the investigator (adv. Attacker’s deliberate false evidence OR unsophisticated ...
Bleeping Computer

Critical SolarWinds Serv-U flaws offer root access to servers

SolarWinds has released security updates to patch four critical Serv-U remote code execution vulnerabilities that could grant attackers root access to unpatched servers. Serv-U is the company's ...
TechRadar

SolarWinds Serv-U has some critical security flaws, so users should update now or face attack

SolarWinds patched four critical Serv-U flaws ated 9.1/10 Bugs allowed arbitrary code execution; no exploitation observed so far Managed file transfer tools remain high-value targets SolarWinds Serv-U ...
TechRadar

Solarwinds WHD flaws exploited in attacks targeting servers and credentials

Hackers exploit SolarWinds Web Help Desk flaws CVE-2025-40551 and CVE-2025-26399 Attackers deploy Zoho ManageEngine, Cloudflare tunnels, Velociraptor for persistence and control Campaign ongoing since ...
CSOonline

SolarWinds WHD zero-days from January are under attack

SolarWinds Web Help Desk (WHD) is under attack, with recent incidents exploiting a chain of zero-day and patched vulnerabilities dating back to late 2025, an analysis of customer reports by security ...
Computer Weekly

Researchers delve inside new SolarWinds RCE attack chain

Researchers at Huntress Security have published data on the exploitation of a critical SolarWinds Web Help Desk (WHD) vulnerability, revealing how in at least three known incidents, attackers ...
Dark Reading

SolarWinds WHD Attacks Highlight Risks of Exposed Apps

Threat actors are pouncing on new vulnerabilities in SolarWinds Web Help Desk (WHD), further illustrating the risks of applications exposed to the public Internet. SolarWinds WHD is an IT support and ...
Redmond Magazine

Microsoft Warns of Active SolarWinds Web Help Desk Exploitation

Microsoft observed active exploitation of internet-exposed SolarWinds Web Help Desk vulnerabilities enabling lateral movement. Attackers abused legitimate tools, PowerShell, and RMM software to ...
SecurityWeek

SolarWinds Patches Four Critical Serv-U Vulnerabilities

The four security defects could be exploited for remote code execution but require administrative privileges. All four security defects, tracked as CVE-2025-40538 to CVE-2025-40541, have a CVSS score ...
theregister

Someone's attacking SolarWinds WHD to steal high‑privilege credentials - but we don't know who or how

Digital intruders exploited buggy SolarWinds Web Help Desk (WHD) instances in December to break into victims' IT environments, move laterally, and steal high-privilege credentials, according to ...
SecurityWeek

Recent SolarWinds Flaws Potentially Exploited as Zero-Days

Vulnerable SolarWinds Web Help Desk instances were exploited in December 2025 for initial access. Attacks targeting internet-accessible SolarWinds Web Help Desk (WHD) instances for initial access may ...
The Hacker News

SolarWinds Patches 4 Critical Serv-U 15.5 Flaws Allowing Root Code Execution

SolarWinds has released updates to address four critical security flaws in its Serv-U file transfer software that, if successfully exploited, could result in remote code execution. The vulnerabilities ...