ConnectWise ScreenConnect

ConnectWise ScreenConnect, previously ConnectWise Control, is a self-hosted remote desktop software application. It was originally developed by Elsinore Technologies in 2008 under the name ScreenConnect, and is now owned by ConnectWise Inc.

ConnectWise Control
Original author(s)Elsinore Technologies
Developer(s)ConnectWise, LLC
Stable release
22.5.7881 / 16 May 2022; 2 years ago (2022-05-16)
Operating systemWindows
Linux
macOS
Android
iOS
TypeRemote desktop software
LicenseProprietary
Websitescreenconnect.connectwise.com

History

edit
 
Former ScreenConnect logo

Elsinore Technologies developed ScreenConnect in 2008 as an add-on to their RMM Software IssueNet in order to assist in providing remote support to end users. They later began distributing the software as a standalone product.[1]

Acquisition by ConnectWise

edit

On February 11, 2015, PSA company ConnectWise announced their acquisition of the ScreenConnect software in order to improve the remote control features of the latest release of their RMM Software, LabTech.[2] ScreenConnect, LLC announced that, despite being acquired by ConnectWise, they would continue to operate under their original name in addition to offering their software as a standalone product.[3]

Starting in early 2017, ConnectWise changed the name of ScreenConnect to ConnectWise Control, saying that this was to simplify their software under one company.[4]

On May 15, 2023, ConnectWise Control was rebranded back to ConnectWise ScreenConnect.[5]

On Thursday, February 22, 2024, version 6 of the self-hosted edition server application of ScreenConnect reported a vulnerability. A patch was available for the latest version (23) the same day, offering a temporary free upgrade.[6]

Product

edit

How it works

edit

The product is available as a cloud hosted Software as a Service (SaaS) or self-hosted server application[7][8] that permits the primary user to host the software on their own servers, PC, virtual machine (VM), or virtual private server (VPS). Once installed, the central web application can be made visible inside and outside of the local area network (LAN). ConnectWise ScreenConnect has a proprietary protocol and exposes an open architecture structure that can be utilized by users to implement custom plugins, scripting, or various integrations.

A generic use model would start with a host initiating a session through the central web application. A participant would then join a session by clicking on an email link or via the guest page of the application. An unattended client can be created and deployed to a targeted machine without the need for human intervention.[9][10] The executable is ScreenConnect.ClientService.exe (x86) on Windows based OSs, and is a signed by a COMODO RSA Code Signing CA certificate [Publisher: ScreenConnect Software].

Features

edit

Most commonly expected features for a product in this arena are present. Examples include reboot and reconnect, drag and drop file transfer, screen recording, safe mode support, multiple monitor, command line access, wake-on-LAN, VoIP, chat, and a custom toolbox for quick deployment of support tools.

In addition to features that facilitate communication, ConnectWise ScreenConnect also offers complete control over branding and customization of the product design, logo, color scheme, icons, text strings, and localization.

Security

edit

The software is self-hosted providing users the ability to control the flow of data behind their own firewall and security implementations. ConnectWise Control uses 256-bit AES encryption to package and ship data, supports two factor authentication, has server level video auditing, and granular role-based security. Forms-based and Windows Authentication are optional authentication methods for security purposes.

Compatibility

edit

Host (presenter or technician): can utilize Mac, Linux, Windows, iOS or Android operating systems. Guest (customer or participant): can connect from Mac, Linux or Windows. ConnectWise ScreenConnect can also be utilized to remotely support Android devices, with complete view and control available for devices manufactured by Samsung.

Technology

edit

Server

edit

The on-site ConnectWise ScreenConnect server is self-hosted, and runs as a .NET Framework application. On Microsoft Windows it runs as a set of services. In 2015, ConnectWise ScreenConnect launched a hosted cloud platform, providing a way to use the ConnectWise ScreenConnect software with no local server installation required.

The ConnectWise ScreenConnect server runs as a set of four discrete services:

  • The Web Server service is an outward-facing ASP.NET HTTP application and serves as a portal for both technicians and their end-users
  • The Relay service provides outward-facing in-session communication and operates on TCP sockets. Communication is encrypted with the AES-256 block cipher.
  • The Session Manager service provides a data store for both the Web Server and Relay services. It is implemented as WCF SOAP web service.
  • The Security Manager service provides a data store for security-related activities, including authentication and auditing

Clients

edit

ConnectWise ScreenConnect sessions are arranged through the web application. Once users join sessions, a ConnectWise ScreenConnect client is launched to connect to the Relay service. ConnectWise ScreenConnect targets clients based on device and operating system:

  • The .NET client is targeted to Microsoft Windows computers and is activated with a custom URI Scheme which starts the session from an installed handler on the controller's workstation.[11] For end-users joining a support session, a variety of bootstrappers can be used including Microsoft's ClickOnce technology.[12]
  • The Java client is targeted to OS X and Linux computers and is activated with Java Web Start.
  • The iOS client is targeted to iPhones and iPads.
  • The Android client is targeted to Android phones and tablets.

Licensing model

edit

ConnectWise ScreenConnect is commercial software. Licenses sit in a pool and are available to any user on any workstation. There are three types of license: a single concurrent that allows one simultaneous connection per license, an unlimited which allows an unlimited number of concurrent sessions as long as all sessions are utilizing the same server, and enterprise licenses which provide flexible options for SaaS, multi-user, or custom functionality.

The concurrent license types are bought as a one-time purchase, with lifetime support. A subscription model is used for updates, which are free during the first year after purchase, after which the "update license" must be renewed. Pricing for updates depends on when the update license was last-renewed.[13]

Misuse

edit

The program under its previous name of ScreenConnect has been used in fraudulent technical support scams where the fraudster is able to gain the control of the victims computer by telephoning and tricking the user to install the software and permitting a connection. The free trial period has been utilized to avoid any software costs in doing this, and similar products such as TeamViewer[broken anchor], AnyDesk and Ammyy Admin have also been used for the scam.[14][15]

Cybercriminal group LockBit exploited vulnerabilties in ScreenConnect.[16]

See also

edit

References

edit
  1. ^ "About ScreenConnect Remote Support Software and ScreenConnect Software, LLC". ScreenConnect. ScreenConnect, LLC. Retrieved 3 April 2015.
  2. ^ "ConnectWise Acquires ScreenConnect". ConnectWise. Archived from the original on 6 April 2015. Retrieved 3 April 2015.
  3. ^ "ScreenConnect joins the ConnectWise family!". ScreenConnect. ScreenConnect, LLC. Retrieved 3 April 2015.
  4. ^ "ScreenConnect is Now ConnectWise® Control™". Connectwise. Retrieved 3 June 2017.
  5. ^ "We're bringing back the ScreenConnect name | ConnectWise". screenconnect.connectwise.com. Retrieved 2023-05-15.
  6. ^ "ConnectWise ScreenConnect 23.9.8 security fix". ConnectWise. 19 February 2024.
  7. ^ Wareprise Remote Support Software
  8. ^ Ohlhorst, Frank (June 9, 2013). eWeek ScreenConnect Shifts Remote Support From the Cloud Back to the Desktop
  9. ^ Jon Jacobi PCWorld Reviews ScreenConnect Archived 2011-04-30 at the Wayback Machine
  10. ^ "Remote Support Software and Services | ConnectWise Control". Archived from the original on 2010-04-19. Retrieved 2010-12-02.
  11. ^ "ScreenConnect 5.2 Release Log". ScreenConnect Remote Support Software User Forum. ScreenConnect, LLC. Archived from the original on 8 April 2015. Retrieved 3 April 2015.
  12. ^ "Softsea reviews ScreenConnect". Archived from the original on 2010-08-18. Retrieved 2010-12-02.
  13. ^ "Upgrade your ScreenConnect Remote Support Software". ScreenConnect. ScreenConnect, LLC. Retrieved 16 April 2015.
  14. ^ Sean Gallagher (28 January 2017). ""You took so much time to joke me"—two hours trolling a Windows support scammer". Ars technica. Archived from the original on 2 August 2018. Retrieved 25 October 2018. Details of a technical support scam misusing ConnectWise Control with the (now discontinued) URL FIX2X.SCREENCONNECT.COM.
  15. ^ Technical support scammers (8 July 2017). "Fake ConnectWise Control login purporting to be British Telecom support (note name of site)". bttechnicaldepartment.screenconnect.com. Archived from the original on 8 July 2017. Retrieved 8 July 2017.
  16. ^ Goodin, Dan (22 February 2024). "Ransomware associated with LockBit still spreading 2 days after server takedown". Ars Technica. Retrieved 23 February 2024.
edit