ZDNet

Supernova malware clues link Chinese threat group Spiral to SolarWinds server hacks

On Monday, Secureworks' counter threat unit (CTU) said that during late 2020, a compromised Internet-facing SolarWinds server was used as a springboard to deploy Supernova, a .NET web shell. Similar ...
ZDNet

SolarWinds hack analysis reveals 56% boost in command server footprint

A new analysis of the SolarWinds breach suggests that the attacker infrastructure behind the campaign is far larger than first believed. The catastrophic SolarWinds security incident involved the ...
Threat Post

The SolarWinds Perfect Storm: Default Password, Access Sales and More

Meanwhile, FireEye has found a kill switch, and Microsoft and other vendors are quickly moving to block the Sunburst backdoor used in the attack. A perfect storm may have come together to make ...
FedScoop

SolarWinds’ federal footprint is large, and compromise is a ‘nightmare scenario’ for affected agencies

Federal agencies faced the most urgent kind of deadline Monday: They were given until noon, Washington time, to respond to a compromise by foreign hackers in a sensitive piece network management ...
Bleeping Computer

SolarWinds patches critical vulnerabilities in the Orion platform

Even with the security updates prompted by the recent SolarWinds Orion supply-chain attack, researchers still found some glaring vulnerabilities affecting the platform, one of them allowing code ...