Concerns Rise among Cybersecurity Experts Due to ‘Insignificant’ ConnectWise Vulnerabilities

Compare to the July 2021 cyber attack on Kaseya, two newly-discovered vulnerabilities in the widely-used remote desktop access application ConnectWise ScreenConnect are being deemed trivial to exploit by security experts. The first vulnerability, tracked as CVE-2024-1709, allows threat actors to bypass authentication using an alternate path or channel and has a critical CVSS score of 10. The second vulnerability, tracked as CVE-2024-1708, is a path traversal issue with a CVSS score of 8.4. ConnectWise has released fixes for the vulnerabilities and cloud partners have already been remediated. On-premises partners are advised to update to version 23.9.10.8817. ConnectWise has acknowledged and is investigating reports of suspicious activity related to the vulnerabilities. The proof-of-concept exploit code has been made public and exploitation has been described as “embarrassingly easy.” Security experts warn that the combination of vulnerabilities and remote services can lead to significant real-world attacks and urge vulnerable ConnectWise customers to take immediate action to protect themselves. Comparisons are being drawn with the Kaseya cyber attack, as an extensive number of managed services providers (MSPs) also use ConnectWise. The vulnerabilities pose a significant risk as they allow hackers to easily spread ransomware through trusted sources like remote access software.

Unlock your business potential with our expert guidance. Get in touch now!

tr_20241129-how-to-delete-spam-sms-messages-and-add-new-blocked-numbers-on-android.jpg

How to Remove Spam SMS Messages and Add New Blocked Contacts on Android

tr_20241129-best-cheap-5g-smartphones.jpg

Top Affordable 5G Smartphones for 2025

airport-signage-flight-display-adobe.jpeg

Case Study: Transforming Data Strategy at Manchester Airports Group with AWS

tr_20241129-3-simple-ways-to-find-your-windows-10-product-key.jpg

3 Ways to Locate Your Windows 10 Product Key

tr_09152023-lifetime-babbel-subscription.jpg

Master a New Language Quickly with Babbel – Now Only $150!

Capture-floppy-disks-Karl-Flinders-hero-2.jpg

Post Office Scandal Survivors Invited to Crucial Government Meeting

tr_20241127-10-excel-tips-for-creating-spreadsheets.jpg

10 Essential Tips for Creating Professional and Functional Excel Spreadsheets