Languagesx
English Deutsch 日本 한국어
Subscribe
Home Hackers actively targeting severe authentication bypass flaw in ConnectWise software

Hackers actively targeting severe authentication bypass flaw in ConnectWise software

Digital security breach scene with a computer screen showing code and a warning sign, shadowy figures in the background exploit a vulnerability, highlighting the urgency of the cybersecurity threat.
Immediate Threat: Unveiling the Cybersecurity Breach Through ConnectWise ScreenConnect Vulnerability

Security experts have raised alarms over a critical vulnerability in ConnectWise ScreenConnect, a widely used remote access tool, which they describe as “trivial and embarrassingly easy” to exploit. According to TechCrunch, this flaw, with the highest severity rating, poses a significant risk as it allows for an authentication bypass that could enable attackers to remotely access and steal sensitive data or deploy malware on affected systems. As confirmed by the ConnectWise, the software’s developer, malicious hackers are actively exploiting this flaw, posing a significant threat to data security and system integrity.

Despite initial assurances of no public exploitation, the company later confirmed incidents of compromised accounts following an investigation by their incident response team. ConnectWise has also identified and shared IP addresses linked to the attackers.

The vulnerability, impacting a tool essential for IT providers and technicians to offer remote support, was first reported to ConnectWise on February 13, with the company disclosing it in a security advisory on Feb. 19. Although the exact number of affected customers remains undisclosed, ConnectWise spokesperson Amanda Lee mentioned “limited reports” of suspected intrusions, adding that 80% of their cloud-based customer environments were patched automatically within 48 hours.

Huntress, a cybersecurity firm, published an analysis indicating ongoing exploitation of this flaw, with adversaries deploying Cobalt Strike beacons and even installing ScreenConnect clients on compromised servers. Huntress CEO Kyle Hanslovan highlighted the severity of the situation, estimating that thousands of servers controlling numerous endpoints remain vulnerable, potentially leading to a surge in ransomware attacks.

ConnectWise has issued a patch for the vulnerability and is urging users, especially those with on-premise ScreenConnect installations, to apply the update promptly. The company also addressed a separate vulnerability in its remote desktop software but has not observed any exploitation of this flaw.

About ReadWrite’s Editorial Process

The ReadWrite Editorial policy involves closely monitoring the gambling and blockchain industries for major developments, new product and brand launches, game releases and other newsworthy events. Editors assign relevant stories to in-house staff writers with expertise in each particular topic area. Before publication, articles go through a rigorous round of editing for accuracy, clarity, and to ensure adherence to ReadWrite's style guidelines.

tags
Maxwell Nelson
Tech Journalist

Maxwell Nelson, a seasoned journalist and content strategist, has contributed to industry-leading platforms, weaving complex narratives into insightful articles that resonate with a broad readership.

Related News

Pokemon hack
Pokemon hack – masses of employee data and more stolen from game developer
Paul McNally
A cinematic shot of a futuristic, empty military command centre. There's a large tactical display with a map of the UK. On the ground, there's a smartphone with a screen filled with various icons. The walls are lined with multiple screens displaying different data. The lighting is bright.
UK armed forces urged to revise smart devices in the wake of Hezbollah pager incident
Brian-Damien Morgan
A map from FlightAware
FlightAware data leak – you thought you were tracking planes, but now somebody could be tracking you – what you need to know
Paul McNally
Art from Disney's Epic Mickey Rebrushed
Disney hackers hang “inside man” out to dry as they name him and say they will release all his personal information “as a warning”
Paul McNally
'Largest password leak ever' exposes 10 billion passwords. This image depicts a dramatic digital representation of a cybersecurity breach, where two padlocks, one intact and one shattering, are shown against a dark background. The shattering padlock is emitting an explosive burst of colorful digital elements, symbolizing the release of a massive amount of data. This visualization powerfully illustrates the concept of a significant data breach, such as the leakage of numerous passwords.
‘Largest password leak ever’ exposes 10 billion credentials
Suswati Basu

Most Popular Tech Stories

Latest News

Medical Document Processing
Featured

How Medical Document Processing Systems Lighten the Workload for Healthcare Providers
Deanna Ritchie1 day

The world of healthcare remains one of the most critical domains across professional practices, providing vital services to the general public. Although many processes within the industry require a level...

Popular TopicsArrow right.svg

Betting
Betting
Betting
Casino
Casino
Casino
Payments
Payments
Payments
Slots
Slots
Slots
Poker
Poker
Poker
Software
Software
Software

Get the biggest iGaming headlines of the day delivered to your inbox

    By signing up, you agree to our Terms and Privacy Policy. Unsubscribe anytime.

    Gambling News

    Explore the latest in online gambling with our curated updates. We cut through the noise to deliver concise, relevant insights, keeping you informed about the ever-changing world of iGaming and its most important trends.

    In-Depth Strategy Guides

    Elevate your game with tailored strategies for sports betting, table games, slots, and poker. Learn how to maximize bonuses, refine your tactics, and boost your chances to beat the house.

    Unbiased Expert Reviews

    Honest and transparent reviews of sportsbooks, casinos and poker rooms crafted through industry expertise and in-depth analysis. Delve into intricacies, get the best bonus deals, and stay ahead with our trustworthy guides.