Search
Homepage This page's url is: -crn- Rankings and Research Companies Channelcast Marketing Matters CRNtv Events WOTC Jobs HPE Zone HPE Discover 2019 News Cisco Partner Summit 2019 News Cisco Wi-Fi 6 Newsroom Dell Technologies Newsroom Hitachi Vantara Newsroom HP Reinvent Newsroom IBM Newsroom The IoT Integrator Lenovo Newsroom Lexmark Newsroom NetApp Data Fabric NetApp Insight 2019 News Cisco Live Newsroom Intel Tech Provider Zone

ConnectWise Control 'Attack Chain' Exploit: 20 Questions For Security Researcher Bishop Fox

"One of our security researchers found these vulnerabilities. He deemed them severe enough to rate them as critical and the attack chain so bad that we had to report them."

1   2   3   ... 11 Next

Security consultancy Bishop Fox has discovered eight vulnerabilities in ConnectWise Control.

“One of our security researchers found these vulnerabilities. He deemed them severe enough to rate them as critical, and the attack chain so bad that we had to report them,” said Bishop Fox Associate Vice President of Consulting Daniel Wood.

ConnectWise was tied to numerous security breaches in 2019, starting with reports in April that the company’s Control product was used in the now-infamous Wipro hack. Then an MSP using ConnectWise Control had its network hacked in August, resulting in the compromise of 22 municipal web sites in cities and towns across Texas.

ConnectWise told CRN Tuesday that while it “struggled” to reproduce the flaws, it has patched 75-percent of them.

Here, Wood answers 20 questions about how Bishop Fox discovered the vulnerabilities and the response it received from ConnectWise.

 
 
1   2   3   ... 11 Next

sponsored resources