Attackers Wield Signed ConnectWise Installers as Malware
Legitimate Remote Access Tool Weaponized by Attackers Using Authenticode StuffingResearchers are tracking a rise in online attacks involving legitimate ConnectWise software that's been repurposed by attackers, using a tactic that leaves the installation software vendor-signed, while adding capabilities that turn it into malware, thanks to a tactic called Authenticode stuffing.