APT / THREAT GROUP
Solar
2
aliases
Last seen:Mar 17, 2026
Intelligence Profile
Malware family tracked by Malpedia. ID: win.solar
Threat Analysis
Solar is a known-sophistication threat actor of undetermined national origin, engaged in cyber operations with a primary motivation of unknown activity patterns.
Intelligence Reports Mentioning Solar
SolarWinds Serv-U Vulnerability Exploited in the Wild
SecurityWeek· Jun 8, 2026
CISA Adds Actively Exploited SolarWinds Serv-U DoS Flaw to KEV Catalog
The Hacker News· Jun 6, 2026
CISA: Hackers now exploit SolarWinds Serv-U flaw to crash servers
BleepingComputer· Jun 5, 2026
CISA Adds One Known Exploited Vulnerability to Catalog
CISA Alerts· Jun 5, 2026
CISA shortens patch deadline for critical Ivanti, SolarWinds bugs
The Record· Mar 10, 2026
Recent Ivanti Endpoint Manager Flaw Exploited in Attacks
SecurityWeek· Mar 10, 2026
CISA Flags SolarWinds, Ivanti, and Workspace One Vulnerabilities as Actively Exploited
The Hacker News· Mar 10, 2026
CISA Adds Three Known Exploited Vulnerabilities to Catalog
CISA Alerts· Mar 9, 2026
External References
Quick Facts
TypeAPT / Threat Group
Aliases2
Also Known As
Solarwin.solar
External Intelligence
Malpedia: win.solarResearch Links
Data sourced from Malpedia, Ransomware.live, RansomLook, and CTIWATCH OSINT collection. Actor attribution is based on available intelligence and may be incomplete.