Critical ConnectWise ScreenConnect Vulnerability Actively Exploited by Hackers

The flaw allows unauthorized remote access, posing significant risks to data security and system integrity.

Hackers are actively exploiting a critical authentication bypass vulnerability in ConnectWise ScreenConnect, posing a significant risk to data security and system integrity.
The vulnerability, described as 'trivial and embarrassingly easy' to exploit, allows attackers to remotely access and steal sensitive data or deploy malware.
ConnectWise has issued a patch for the vulnerability and urges users, especially those with on-premise installations, to apply the update promptly.
Cybersecurity firm Huntress has observed ongoing exploitation of the flaw, estimating that thousands of servers controlling numerous endpoints remain vulnerable.
The U.S. government agencies CISA and the NSA have previously warned about the malicious use of legitimate remote monitoring and management software, including ConnectWise SecureConnect.