Priya Patel
TLDR:
- Cybersecurity researchers at Huntress have identified threats posed by a vulnerability in ConnectWise’s ScreenConnect tool.
- Threat actors are exploiting the vulnerability to carry out ransomware attacks, cryptocurrency mining, and installing backdoor implants.
Cybersecurity researchers at Maryland-based cyber firm Huntress have identified a growing laundry list of “absurd and extreme” threats posed to customers exploited by a now-patched vulnerability in ConnectWise’s ScreenConnect tool. The vulnerability, named “SlashAndGrab,” allows threat actors to carry out ransomware attacks, cryptocurrency mining, and install backdoor implants to control computers. ConnectWise released security patches and urged all users to update their systems to mitigate the risk. This incident highlights the importance of promptly addressing vulnerabilities to prevent large-scale cyber attacks.
