ML
    • Recent
    • Categories
    • Tags
    • Popular
    • Users
    • Groups
    • Register
    • Login

    ConnectWise Zero Day?

    Scheduled Pinned Locked Moved IT Discussion
    4 Posts 3 Posters 455 Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • PhlipElderP
      PhlipElder
      last edited by

      https://www.zdnet.com/article/connectwise-warns-of-ongoing-ransomware-attacks-targeting-its-customers/

      Not sure how this has played out yet, but it's looking not so good for those using ConnectWise.

      PhlipElderP 1 Reply Last reply Reply Quote 2
      • PhlipElderP
        PhlipElder @PhlipElder
        last edited by PhlipElder

        As a FYI: Chatting with a colleague that uses CW, they indicated that 2FA on all endpoints reduces the risk and that the vuln may have been MySQL published to the Internet related.

        1 Reply Last reply Reply Quote 1
        • JaredBuschJ
          JaredBusch
          last edited by

          Bad documentation and stupid users.

          ScreenConnect has never needed more than ports 8040 and 8041 opened.

          F 1 Reply Last reply Reply Quote 3
          • F
            flaxking @JaredBusch
            last edited by

            @JaredBusch said in ConnectWise Zero Day?:

            Bad documentation and stupid users.

            ScreenConnect has never needed more than ports 8040 and 8041 opened.

            The article is talking about ConnectWise Automate

            1 Reply Last reply Reply Quote 0
            • 1 / 1
            • First post
              Last post