Critical ConnectWise Vulnerability Affects Thousands of Internet-Exposed Servers
The vulnerability was found in the ConnectWise Control (CWC) Server. It is a web-based service that helps IT professionals manage their business. The vulnerability has been found to affect thousands of servers that are exposed on the internet, which means hackers can use it to gain access to sensitive data.
A new critical vulnerability has been discovered in ConnectWise Control (CWC) Server, a web-based service that helps IT professionals manage their business. The vulnerability affects thousands of servers that are exposed on the internet and could be used by hackers to gain access to sensitive data.
ConnectWise, a provider of IT management solutions, has been hacked.
The company has confirmed that a vulnerability in their ConnectWise Control product exposes the servers it monitors to remote attacks.
The vulnerability allows an attacker to remotely execute commands on affected servers.
As a result, the attacker can take control of vulnerable servers and observe all network traffic on these machines.
—
A critical vulnerability in the ConnectWise Control software has been disclosed that affects over 5,000 servers worldwide. The vulnerability was first discovered by a security researcher from the Netherlands.
The vulnerability was found in ConnectWise Control, which is a remote access and management tool for IT service providers. ConnectWise Control is used to remotely connect to and manage thousands of servers around the world. The Dutch security researcher who discovered it said that anyone who knows about this exploit can use it to gain full control of any server running ConnectWise Control software.
This means that any server running this software can be hacked with a single command from anywhere in the world, without even having to know its IP address or host name. All you need is the user’s email address and password. This would give hackers full control of these servers, including all data on them, such as customer information, credit card numbers and more sensitive data like bank account details or login credentials for other systems