News on Medial

Researchers warn high-risk ConnectWise flaw under attack is 'embarrassingly easy' to exploit | TechCrunch

TechCrunchTechCrunch · 9m
Researchers warn high-risk ConnectWise flaw under attack is 'embarrassingly easy' to exploit | TechCrunch

A high-risk vulnerability in the remote access tool ConnectWise ScreenConnect is being actively exploited by malicious hackers, according to the software's developer. The flaw, described as an authentication bypass vulnerability, could enable attackers to steal confidential data or deploy malware. ConnectWise initially said there was no evidence of public exploitation, but has since confirmed compromises and shared IP addresses used by threat actors. Cybersecurity firm Huntress has also reported active exploitation, with threat actors using the Cobalt Strike framework to compromise servers. ConnectWise has released a patch for the vulnerability, urging users to apply it immediately.

Comments

Download the medial app to read full posts, comements and news.