Oftentimes, a blog is a collaborative effort by many people across different teams at Huntress. Learn more about individual authors here.
Time Travelers Busted: How to Detect Impossible Travel
Attacking MSSQL Servers, Pt. II
SlashAndGrab: The ConnectWise ScreenConnect Vulnerability Explained
SlashAndGrab: ScreenConnect Post-Exploitation in the Wild (CVE-2024-1709 & CVE-2024-1708)
Think Your ScreenConnect Server Is Hacked? Here’s What To Look For.
A Catastrophe For Control: Understanding the ScreenConnect Authentication Bypass (CVE-2024-1709 & CVE-2024-1708)
Detection Guidance for ConnectWise CVE-2024-1709
Vulnerability Reproduced: Immediately Patch ScreenConnect 23.9.8