ConnectWise, a leading IT management software provider, is investigating a sophisticated nation-state attack affecting some of its customers using its core remote management tool, ScreenConnect. The company is working with forensic experts from Mandiant and coordinating with law enforcement to address the incident and enhance security measures. #ConnectWise #ScreenConnect #Mandiant #NationStateAttack
Keypoints
- ConnectWise is investigating a suspected nation-state cyberattack targeting its systems and customers.
- The attack involved suspicious activity linked to a sophisticated foreign threat actor, impacting a small number of customers.
- The exploited software, ScreenConnect, has been previously targeted by Chinese and Russian cyber espionage efforts.
- Security firms like Google and Microsoft have identified multiple nation-state groups exploiting vulnerabilities in ScreenConnect.
- ConnectWise has patched the software and enhanced monitoring, but the incident highlights ongoing risks for remote management tools.
Read More: https://therecord.media/connectwise-nation-state-attack-targeted-some-customers