ConnectWise patches new flaw allowing ScreenConnect hijacking

ConnectWise is warning ScreenConnect customers of a cryptographic signature verification vulnerability that could lead to unauthorized access and privilege escalation.
SecurityWeek

Critical ScreenConnect Vulnerability Exposes Machine Keys

ConnectWise has patched a critical ScreenConnect flaw that allowed attackers to obtain machine keys and compromise servers.
CRN

ConnectWise Releases ScreenConnect 26.1 Patch for Critical Vulnerability

The new vulnerability in ConnectWise’s ScreenConnect remote support and access tool marks the second time in less than a year ScreenConnect has had cybersecurity issues.

ConnectWise ScreenConnect closes critical access vulnerability

In ConnectWise's ScreenConnect, attackers from the network can exploit a vulnerability to gain unauthorized remote access.
Yahoo

ConnectWise hit by nation-state cyberattack, some ScreenConnect customer systems affected

ConnectWise has revealed it recently suffered a cyberattack, likely at the hands of a “sophisticated nation state actor.” In a short announcement published on its website, the company said it recently ...
Bleeping Computer

ConnectWise urges ScreenConnect admins to patch critical RCE flaw

ConnectWise warned customers to patch their ScreenConnect servers immediately against a maximum severity flaw that can be used in remote code execution (RCE) attacks. This security bug is due to an ...
Yahoo Finance

Credential harvesting campaign targets ScreenConnect cloud administrators

This story was originally published on Cybersecurity Dive. To receive daily news and insights, subscribe to our free daily Cybersecurity Dive newsletter. A sophisticated credential-harvesting campaign ...
eWeek

ScreenConnect Shifts Remote Support From the Cloud Back to the Desktop

eSpeaks’ Corey Noles talks with Rob Israch, President of Tipalti, about what it means to lead with Global-First Finance and how companies can build scalable, compliant operations in an increasingly ...