CRN

Fidelis Targeted By SolarWinds Hackers After Installing Orion

Fidelis Cybersecurity was a target of interest to the SolarWinds hackers after downloading an evaluation copy of trojanized SolarWinds Orion network monitoring software in May, the company disclosed ...
CRN

Review: SolarWinds Gets It Right With Orion 9

The wrinkles reviewers encountered with the installation and configuration of a previous version of NPM have been smoothed out in Orion 9. Total time for installation and configuration of the product ...
Threat Post

SolarWinds Orion Bug Allows Easy Remote-Code Execution and Takeover

The by-now infamous company has issued patches for three security vulnerabilities in total. Three serious vulnerabilities have been found in SolarWinds products: Two in the Orion User Device Tracker ...
Threat Post

Second SolarWinds Attack Group Breaks into USDA Payroll — Report

A second APT, potentially linked to the Chinese government, could be behind the Supernova malware. There had been hints that a second group of malicious actors may have exploited a SolarWinds bug to ...
ZDNet

A second hacking group has targeted SolarWinds systems

As forensic evidence is slowly being unearthed in the aftermath of the SolarWinds supply chain attack, security researchers have discovered a second threat actor that has exploited the SolarWinds ...
ZDNet

CISA updates SolarWinds guidance, tells US govt agencies to update right away

The US Cybersecurity and Infrastructure Security Agency has updated its official guidance for dealing with the fallout from the SolarWinds supply chain attack. In an update posted late last night, ...