ConnectWise has announced it will be rotating the digital code signing certificates for its software products, including ScreenConnect, ConnectWise Automate, and its remote monitoring and management (RMM) tools, due to security concerns raised by a third-party researcher. The researcher highlighted issues regarding how some configuration data was handled in earlier versions of ScreenConnect.
While ConnectWise did not detail the specific nature of the problem publicly, additional insights were provided in a confidential FAQ available to customers. The concern was related to ScreenConnect’s method of storing configuration data in part of the installer that wasn’t signed but was still included. This practice, while aimed at keeping the signature intact and allowing for some customizations, could potentially lead to weak security practices under current standards, particularly for software designed for remote access.
In response to these concerns, ConnectWise plans to distribute a new set of certificates alongside an update aimed at enhancing the management of the configuration data in ScreenConnect. The revocation of the previous certificates is scheduled for June 13 at 8 p.m. ET, and the company underscores that there is no evidence of a breach of their systems or certificates.
ConnectWise is already working on updating certificates and agents across all its cloud versions of Automate and RMM. However, users of on-premise versions of ScreenConnect or Automate will need to manually update to the latest build and ensure all agents are current before the cutoff date to prevent any service interruptions.
The urgency for these changes comes just days after ConnectWise acknowledged a breach caused by a suspected nation-state actor, which compromised a small number of customers by exploiting a specific vulnerability. This incident has raised alarms as cybercriminals increasingly leverage legitimate remote monitoring and management tools, like ScreenConnect, to gain unauthorized access while remaining undetected by blending in with normal operational activities.
Welcome to DediRock, your trusted partner in high-performance hosting solutions. At DediRock, we specialize in providing dedicated servers, VPS hosting, and cloud services tailored to meet the unique needs of businesses and individuals alike. Our mission is to deliver reliable, scalable, and secure hosting solutions that empower our clients to achieve their digital goals. With a commitment to exceptional customer support, cutting-edge technology, and robust infrastructure, DediRock stands out as a leader in the hosting industry. Join us and experience the difference that dedicated service and unwavering reliability can make for your online presence. Launch our website.