CIO

PayPal is the latest victim of Java deserialization bugs in Web apps

PayPal has fixed a serious vulnerability in its back-end management system that could have allowed attackers to execute arbitrary commands on the server and potentially install a backdoor. The ...
TechRadar

Solarwinds WHD flaws exploited in attacks targeting servers and credentials

Hackers exploit SolarWinds Web Help Desk flaws CVE-2025-40551 and CVE-2025-26399 Attackers deploy Zoho ManageEngine, Cloudflare tunnels, Velociraptor for persistence and control Campaign ongoing since ...
CSOonline

SolarWinds, again: Critical RCE bugs reopen old wounds for enterprise security teams

Another round of critical Web Help Desk flaws highlights how SolarWinds’ legacy code and past breaches continue to haunt IT and security leaders. SolarWinds is yet again disclosing security ...
heise online

Attacks on Solarwinds Web Help Desk, FreePBX and Gitlab observed

The US cybersecurity agency CISA has issued a warning about ongoing attacks on security vulnerabilities in Solarwinds Web Help Desk, FreePBX, and Gitlab. In some cases, the vulnerabilities are ...