Gotham Security, an Abacus Group company providing high-quality boutique cybersecurity services, has announced that its research team recently discovered two vulnerabilities in ConnectWise ScreenConnect, saving tens of thousands of enterprises from the possible consequences of a significant cyber-attack.
ConnectWise ScreenConnect is a remote-control software used by IT managed service providers globally.
Had Gotham Security not stepped in and had a hacker identified the vulnerabilities as part of a zero-day attack, it would likely have led to MSPs and their clients being exposed to this zero-day vulnerability.
If the vulnerabilities were left unaddressed, bad actors would have been able to gain access to all workstations and servers with ScreenConnect from a local network and then escalate their privileges to be local administrators on the affected systems.
Gotham Security acted quickly to mitigate this possibility, rapidly developing a technical write-up about the vulnerabilities and disclosing it to ConnectWise in accordance with its Vulnerability Disclosure Policy.
Within an hour of submission, ConnectWise had triaged the vulnerabilities and assigned security engineers to replicate Gotham Security's findings.
Later that same day, both findings were confirmed as valid.
ConnectWise then initiated the development of a security patch to address both vulnerabilities.
Gotham has demonstrated a unique capability in uncovering vulnerabilities at a speed that other boutique providers would struggle to match.
For more details of the ScreenConnect vulnerability and how it was addressed, please visit Discovering ConnectWise ScreenConnect RCE & LPE Vulnerabilities.
This Cyber News was published on www.itsecurityguru.org. Publication date: Thu, 11 Jan 2024 15:13:03 +0000