Microsoft Security Blog: Microsoft discovers threat actor targeting SolarWinds Serv-U software with 0-day exploit

Microsoft Security Blog: Microsoft discovers threat actor targeting SolarWinds Serv-U software with 0-day exploit. “Microsoft has detected a 0-day remote code execution exploit being used to attack SolarWinds Serv-U FTP software in limited and targeted attacks. The Microsoft Threat Intelligence Center (MSTIC) attributes this campaign with high confidence to DEV-0322, a group operating out of China, based on observed victimology, tactics, and procedures.”

Leave a Reply

%d bloggers like this: