Security Update & Assurance from Brivy IT

Your Security, Our Priority

At Brivy IT, we are committed to the highest standards of security and service for our clients. We want to inform you about recent developments regarding security vulnerabilities identified in ConnectWise ScreenConnect and ConnectWise Automate cloud instances, particularly those with ScreenConnect installations.

Vulnerabilities Addressed

Recently, two vulnerabilities were discovered in versions up to 23.8.4 of ConnectWise ScreenConnect:

• CVE-2023-47256: This issue allowed local users unauthorized connections to arbitrary relay servers by exploiting proxy settings.
• CVE-2023-47257: This more critical vulnerability made it possible for attackers to execute remote code via specially crafted messages.

We understand the potential risks such vulnerabilities could pose to your operations and data security.

Proactive Measures Taken by Brivy IT

We want to assure you that Brivy IT has proactively addressed these concerns:

1. Immediate Patching: Our team has promptly patched all cloud-hosted versions of ScreenConnect utilized in our services, ensuring no vulnerability remains that could compromise your systems.
2. Local Client Agent Updates: We have also updated all Local Client agents to the newly patched version (23.8.5), which includes fixes for the identified vulnerabilities, further securing your infrastructure.
3. Continuous Monitoring: Our security team remains vigilant, continuously monitoring our systems and services to preemptively address any security issues and ensure the integrity of your data and operations.

Your Role

While we’ve taken extensive measures to secure our hosted services, we encourage you to remain proactive in your security practices. Regularly updating your software, monitoring system activities, and staying informed about security advisories are prudent steps to maintain a secure environment.

Open Lines of Communication

We understand the importance of transparency and communication, especially when it comes to security. Brivy IT is here to support you, answer any questions, and address concerns you may have about these updates or your overall security posture.

Commitment to Excellence

Your trust in Brivy IT is not taken lightly. We are dedicated to not only meeting but exceeding your expectations for security and reliability. This recent swift action to patch vulnerabilities is a testament to our commitment to your business’s safety and success.

Stay Secure and Informed

Security is a shared responsibility, and we’re proud to be your partner in this journey. We will continue to keep you informed about any developments that impact your services and the measures we’re taking to keep your operations secure and efficient.