heise PlusAbo
Anzeige

Patch now! Attackers attack Solarwind's Web Help Desk

Attacks are currently underway on Solarwinds' Web Help Desk customer support software. Security updates are available for download.

listen Print view
A warning light with a warning triangle

(Image: Sashkin/Shutterstock.com)

1 min. read
Security
By

In order to thwart current attacks, administrators should update Solarwind's Web Help Desk (WHD) immediately. This is the only way to prevent unauthorized access and data manipulation.

Install a security update

The US authority Cybersecurity & Infrastructure Security Agency (CISA) warns of the attacks in a recent article. The"critical" vulnerability (CVE-2024-28987) has been known since August of this year. Since then, the secured version WHD 12.8.3 Hotfix 2 has also been available.

Videos by heise

Attackers use hardcoded access data to gain access to the customer support software and modify data. It is not known what the attackers are actually doing and to what extent the attacks are currently taking place. CISA also does not explain how attacks are carried out. It also remains unclear how admins can recognize systems that have already been attacked. Unfortunately, the information from the official warning does not help either.

(des)

Don't miss any news – follow us on Facebook, LinkedIn or Mastodon.

This article was originally published in German. It was translated with technical assistance and editorially reviewed before publication.

Beliebte Bestenlisten

Alle Angebote
Newsletter heise-Bot heise-Bot Push Nachrichten Push Push-Nachrichten