2024-02-23
On February 19, 2024, ConnectWise published a security advisory for #ScreenConnect version 23.9.8, referencing two vulnerabilities and software weaknesses.
TechCrunch
Researchers warn that hackers are exploiting ConnectWise's remote access tool via a flaw “embarrassingly easy” to exploit; ConnectWise has confirmed the attacks
2024-02-22
On February 19, 2024, ConnectWise published a security advisory for #ScreenConnect version 23.9.8, referencing two vulnerabilities and software weaknesses.
TechCrunch
Researchers warn that hackers are exploiting ConnectWise's remote access tool via a flaw “embarrassingly easy” to exploit; ConnectWise has confirmed the attacks
“I can't sugarcoat it — this shit is bad," said Huntress' CEO — Security experts are warning that a high-risk vulnerability …
2023-03-31
Overnight, the Huntress team continued to research the 3CX VoIP Software Supply Chain Attack. Our latest findings, IOCs, and screenshots of our analysis can be found here: https://www.huntress.com/...
BleepingComputer
Researchers say hackers have compromised the VoIP desktop client of 3CX's Phone System, used by 600K+ companies and 12M+ DAUs, in an ongoing supply chain attack
https://www.3cx.com/... Any vendor of software and services that pull in code from NPM, PIP, RubyGems etc … Eitan Erez : This supply chain attack started unfolding not long ago as...