Microsoft alerted SolarWinds to a security vulnerability in its Serv-U Managed File Transfer and Secure FTP products. A cyberattacker is using the vulnerability to target a limited amount of customers. The vulnerability exists in the latest version 15.2.3 HF1 released on May 5 of this year, as well as all prior versions. The company is recommending that all customers using the affected products update now, which can be done by accessing the company s customer portal.
Source: https://threatpost.com/solarwinds-hotfix-zero-day-active-attack/167704/