ConnectWise isn’t a vendor most Reg readers deal with directly, but the fact the company has just issued its first-ever security advisory deserves attention.
That’s because ConnectWise specialises in software that IT services providers use to manage your IT. The 38-year-old company is the dominant force in that market, meaning that if you work with a system integrator, managed services provider or other outsourcer there’s a decent chance that ConnectWise touches some of the tech your business relies on.
And that can be scary because if a bad actor can control a ConnectWise instance, they can control you. Which is just what happened in April 2019 when someone was able to access a ConnectWise instance used by Wipro and used it to plant ransomware at the outsourcer’s clients.
Phishing was the cause of that incident, rather than a bug. But ConnectW ..
Support the originator by clicking the read the rest link below.
