Ongoing intrusions leveraging the critical hardcoded credentials bug in SolarWinds Web Help Desk, tracked as CVE-2024-28987, have prompted the flaw's addition to the Cybersecurity and Infrastructure Security Agency's Known Exploited Vulnerabilities catalog, with federal agencies urged to remediate the issue by November 5, reports SC Media.
Businesses have also been advised by cybersecurity experts to immediately address the vulnerability, which could be abused to facilitate undetected internal network compromise and data alteration.
DoControl co-founder and Chief Revenue Officer Omri Weinberg highlighted the ease of exploiting the flaw, which could lead not only to the theft of extensive sensitive information from help desk systems but also to possible service disruptions.
Skyhawk Security CEO Chen Burshan also emphasized cybersecurity risks from any exposed credentials, not necessarily connected to this vulnerability.
"Enterprises are no less exposed to this type of risk than federal agencies and, to an extent, maybe even more. Recent IBM research has pointed out that in 70% of the cloud attacks, the attacker is logging in using leaked credentials, not breaking in," said Burshan.