Researchers at Huntress and Microsoft have shared findings from their analysis of a new SolarWinds Web Help Desk vulnerability.

According to security researchers, attackers are currently exploiting critical malware vulnerabilities in SolarWinds Web Help ...

Attacks targeting SolarWinds Web Help Desk instances in December 2025 might have exploited recently patched vulnerabilities as zero-days.

Microsoft links SolarWinds WHD exploits to RCE, lateral movement, and domain compromise in multi-stage attacks.

We are seeing exploitation of SolarWinds Web Help Desk via CVE‑2025‑40551 and CVE‑2025‑40536 that can lead to domain compromise; here is how to patch, hunt, and mitigate now.

SolarWinds, a leading provider of simple, powerful, secure observability and IT management software, today announced Becky Melton as General Counsel and Group Vice President, Legal. In this new role, ...

Microsoft's Defender Security Research Team has observed threat actors actively exploiting internet-exposed SolarWinds Web Help Desk instances in multi-stage intrusions that led to lateral movement ...

Orion Security has secured $32 million in Series A funding led by Norwest Venture Partners to replace policy-driven data loss ...

Analysis of real-world incidents reveals that attackers are chaining multiple flaws to compromise the ticketing and support ...

Security researchers warn that multiple enterprise customers have been compromised in connection with a critical flaw in SolarWinds Web Help Desk. Huntress Labs said that three customers have been ...

Exploitation of CVE-2025-40551, an RCE flaw affecting SolarWinds Web Help Desk, appears to be spreading, and defenders are on high alert.

CISA warns that a fresh critical-severity SolarWinds vulnerability leading to unauthenticated RCE has been exploited in attacks.