Threat Actor Groups, Including Black Basta, are Exploiting Recent ScreenConnect Vulnerabilities

February 27, 2024 at 03:10AM Summary: The blog post details recent vulnerabilities in ConnectWise ScreenConnect—CVE-2024-1708 and CVE-2024-1709—exploited by threat actor groups like Black Basta and Bl00dy Ransomware gangs. It highlights the technical and operational aspects of the vulnerabilities and provides indicators of compromise for detection and mitigation. Let me know if you need any further … Read more

ConnectWise ScreenConnect Mass Exploitation Delivers Ransomware

February 23, 2024 at 10:13AM A critical security vulnerability in ConnectWise ScreenConnect has been identified, with potential for a large-scale supply-chain attack. Exploitation can allow hackers to access numerous servers and endpoints, including those of managed service providers. Multiple CVEs have been disclosed, with active exploitation reported. Organizations are advised to apply patches and monitor … Read more