October 25, 2024 at 05:09PM The SEC has charged four companies for inadequate disclosures related to the 2020 SolarWinds breach. Unisys faced the largest penalty of $4 million. The SEC aims to deter vague breach disclosures and stresses the importance of precise communication to avoid future legal ramifications, urging closer collaboration between CISOs and legal … Read more
October 25, 2024 at 06:34AM The SEC has charged four companies—Avaya, Check Point, Mimecast, and Unisys—for misleading disclosures about the 2020 SolarWinds cyberattack, violating federal securities laws. Fines include $4 million for Unisys and $1 million for Avaya. The companies downplayed the breach’s extent, leaving investors uninformed about risks. ### Meeting Takeaways – October 25, … Read more
October 22, 2024 at 02:39PM The SEC charged Unisys Corp, Avaya Holdings, Check Point Software, and Mimecast for misleading investors about cybersecurity breaches from the 2020 SolarWinds hack. The companies agreed to pay civil penalties totaling approximately $6 million, with fines based on downplayed disclosures regarding their incidents and data access during the breach. ### … Read more
October 16, 2024 at 04:03PM A critical credential vulnerability in SolarWinds’ Web Help Desk (CVE-2024-28987) allows unauthenticated remote access. Although patched in version 12.8.3 HF2, many instances remain vulnerable. The flaw is exploited by criminals, with significant risks of sensitive data exposure. This is SolarWinds’ second critical bug for the product in two months. ### … Read more
October 16, 2024 at 03:57PM CISA added three vulnerabilities to its ‘Known Exploited Vulnerabilities’ catalog, including a critical SolarWinds flaw (CVE-2024-28987) due to hardcoded credentials, actively exploited by attackers. Federal agencies must update by November 5, 2024. Additional flaws in Windows and Mozilla Firefox are also noted, with active exploitation confirmed. ### Meeting Takeaways 1. … Read more
October 16, 2024 at 01:42AM CISA has added a critical vulnerability (CVE-2024-28987) in SolarWinds Web Help Desk software to its KEV catalog, noting active exploitation. This flaw allows unauthorized remote access to modify sensitive help desk ticket data. Federal agencies must apply security fixes by November 5, 2024, to protect their networks. **Meeting Takeaways – … Read more
September 17, 2024 at 01:15AM SolarWinds released fixes for two security flaws in its Access Rights Manager (ARM) software. The critical vulnerability (CVE-2024-28991) with a 9.0 CVSS score allows remote code execution. A medium-severity flaw (CVE-2024-28990) was also addressed. Security researcher Piotr Bazydlo discovered the flaws, and updates to ARM version 2024.3.1 are recommended to … Read more
September 16, 2024 at 05:27AM SolarWinds has released patches for two vulnerabilities in its Access Rights Manager, including a critical-severity bug (CVE-2024-28991) enabling remote code execution. A second issue (CVE-2024-28990) allows an attacker to access RabbitMQ management console. Both were resolved in version 2024.3.1 and users are advised to update installations promptly. No exploitation in … Read more
August 23, 2024 at 03:00PM SolarWinds has released a patch for a second critical vulnerability in its Web Help Desk software, addressing hardcoded credentials that could allow remote attackers to modify data. The patch also addresses a previous Java deserialization issue. Customers are urged to update immediately to mitigate potential exploitation by threat actors. Based … Read more
August 23, 2024 at 04:09AM SolarWinds released a second hotfix for an exploited Web Help Desk vulnerability, removing hardcoded credentials and fixing an SSO issue. The CVE-2024-28987 vulnerability with a CVSS score of 9.1 could allow remote users to access internal functionality. CISA quickly added the bug to its Known Exploited Vulnerabilities catalog, urging immediate … Read more