Security news aggregator

Latest coverage for SolarWinds

SolarWinds is associated with software supply-chain security, network management tools, and the 2020 compromise that affected public and private organizations.

7 headlines in this view

Refine the feed

Search across headline titles and summaries.

Tag briefing

Background for this topic.

SolarWinds is a software company whose IT-management and network-monitoring products are used to administer systems and collect operational data. In security news, the tag commonly covers its products, vulnerabilities, and the 2020 Orion supply-chain compromise, in which attackers inserted malicious code into legitimate software updates; selected downstream customers were then targeted.

The central security concern is that management software often has broad network visibility and administrative access, making its build pipeline, update mechanism, and deployment environment high-value attack surfaces. Organizations should distinguish the Orion compromise from separately reported product vulnerabilities, maintain an inventory of affected versions, apply verified fixes, and restrict management servers’ privileges and outbound communications. Monitoring unusual authentication, remote administration, or connections from management infrastructure can support detection, while threat intelligence and incident response may be needed to assess whether a compromised update was installed and what systems it could reach.

Showing 7 most recent headlines Filtered view
Bank Info Security 5 months, 1 week ago

Breach Roundup: Italy Thwarts Russian Olympic Hacks

Also, Active Exploits Hit SolarWinds, Ivanti as APT28 Targets EU, UkraineThis week, Italy blocked Russian cyberattacks targeting the Olympics. Flaws in SolarWinds, Ivanti and Microsoft Office. Russia's APT28 ramped up attacks in Ukraine, supply chain attacks, regulators probed major breaches and a U.S. judge sentenced the operator of a darkweb drug marketplace.

Bank Info Security 5 months, 1 week ago

Breach Roundup: Italy Thwarts Russian Olympic Hacks

Also, Active Exploits Hit SolarWinds, Ivanti as APT28 Targets EU, UkraineThis week, Italy blocked Russian cyberattacks targeting the Olympics. Flaws in SolarWinds, Ivanti and Microsoft Office. Russia's APT28 ramped up attacks in Ukraine, supply chain attacks, regulators probed major breaches and a U.S. judge sentenced the operator of a darkweb drug marketplace.

Bank Info Security 5 months, 1 week ago

SolarWinds CTO Breaks Down Its Secure AI Agent Design

Krishna Sai on Secure-by-Design Principles Behind SolarWinds' Agentic AI PlatformAgentic artificial intelligence is redefining the operational contract between humans and software. Krishna Sai, CTO of SolarWinds, unpacks the technical architecture behind the company's approach to agentic AI and why fully autonomous remediation is a deliberate line not yet crossed.

US agencies told to patch by Friday Attackers are exploiting a critical SolarWinds Web Help Desk bug - less than a week after the vendor disclosed and fixed the 9.8-rated flaw. That's according to America's lead cyber-defense agency, which set a Friday deadline for federal agencies to patch the security flaw.…