See the Complete Picture.
Get Started
SubscribeLogin
Israel-Hamas Conflict
Champions League
Social Media
WWE
Natural Disasters
Soccer
Bitcoin
Artificial Intelligence
Donald Trump
French Open
Baseball
NCAA
Memorial Day
Published loading...Updated

ConnectWise Compromised by 'Sophisticated' Nation State

  • In November 2024, ConnectWise experienced a cyberattack that compromised its systems and affected a very limited number of customers using cloud-based ScreenConnect instances.
  • The breach occurred due to suspicious activity linked to a sophisticated nation-state actor, leading ConnectWise to launch an investigation with forensic experts Mandiant and coordinate with law enforcement.
  • ConnectWise addressed two critical security issues, including CVE-2025-3935, a high-severity vulnerability involving ViewState code injection found in ScreenConnect releases up to version 25.2.3. This flaw could enable remote code execution if an attacker first obtains the machine keys.
  • The company implemented enhanced monitoring and security hardening across its environment and reported no further suspicious activity since the patch deployment while notifying all affected customers.
  • The incident highlights risks in remote access solutions widely used by managed service providers and IT teams, suggesting ongoing threats from nation-state actors exploiting software vulnerabilities.
Insights by Ground AI
Does this summary seem wrong?

12 Articles

All
Left
1
Center
4
Right
The RegisterThe Register
Center

ConnectWise compromised by 'sophisticated' nation state

: Pen tester on ScreenConnect bug: This one ‘terrifies’ me

Read Full Article
PC MagPC Mag
Lean Left

Nation-State Hackers Target Remote Software Vendor ConnectWise

The hack is concerning because ConnectWise supplies remote access and automation software for corporate clients, potentially giving scammers access to a broad range of companies.

·United States
Read Full Article
Cybersecurity DiveCybersecurity Dive
Center

ConnectWise warns of threat activity linked to suspected nation-state hackers

The company said suspicious activity has affected a limited number of ScreenConnect customers.

Read Full Article
Tech RadarTech Radar
Center

ConnectWise hit by nation-state cyberattack, some ScreenConnect customer systems affected

State-sponsored hackers are targeting Connectwise and its customers.

·United Kingdom
Read Full Article
BleepingComputerBleepingComputer
Center

ConnectWise breached in cyberattack linked to nation-state hackers

IT management software firm ConnectWise says a suspected state-sponsored cyberattack breached its environment and impacted a limited number of ScreenConnect customers.

Read Full Article
it-daily.netit-daily.net

State Hackers Attack ConnectWise Infrastructure

A supposedly state-funded hacker group has attacked the systems of the IT service provider ConnectWise. According to the company, the attack affected only a few users of the remote software ScreenConnect. ConnectWise admitted in a short notice suspicious activities in its own IT infrastructure. The company from Florida assumes that a highly developed nation-state actor is behind the break-in. The affected customers have already been notified. Sc…

Read Full Article
Think freely.Subscribe and get full access to Ground NewsSubscriptions start at $9.99/yearSubscribe

Bias Distribution

  • 80% of the sources are Center
80% Center
Factuality

To view factuality data please Upgrade to Premium

Ownership

To view ownership data please Upgrade to Vantage

BleepingComputer broke the news in on Thursday, May 29, 2025.
Sources are mostly out of (0)

Similar News Topics

Leonardo Da Vinci

Leonardo Da Vinci

Environment

Environment

Software

Software

Cyber Security

Cyber Security

News
For You
SearchBlindspotLocal