ConnectWise ScreenConnect

Last updated
ScreenConnect
Original author(s) Elsinore Technologies
Developer(s) ConnectWise
Operating system Windows
Linux
macOS
Android
iOS
Type Remote desktop software
License Proprietary
Website screenconnect.com

ScreenConnect, previously ConnectWise Control and ConnectWise ScreenConnect, is a self-hosted remote desktop software application. It was originally developed by Elsinore Technologies in 2008 under the name ScreenConnect. In 2015, it became a subsidiary of ConnectWise Inc. [1]

Contents

History

Logo of ScreenConnect's parent company, ConnectWise Connectwise-Logo.png
Logo of ScreenConnect's parent company, ConnectWise

Elsinore Technologies developed ScreenConnect in 2008 as an add-on to its RMM software, IssueNet, to assist in providing remote support to end users. It later began distributing the software as a standalone product. [2]

Acquisition by ConnectWise

On February 11, 2015, IT management software company ConnectWise announced its acquisition of the ScreenConnect software to improve the remote control features of the latest release of its RMM Software, LabTech. [1] [3] ScreenConnect, LLC announced that, despite being acquired by ConnectWise, it would continue to operate under its original name in addition to offering its software as a standalone product. [4]

Starting in early 2017, as part of a brand-unification strategy driven by Arnie Bellini, founder and CEO, ConnectWise changed the name of ScreenConnect to ConnectWise Control to simplify its software suite under one company. [5] The other business entities were similarly rebranded to Manage, Automate, and Sell—all under the ConnectWise company brand. [6]

On May 15, 2023, ConnectWise Control was rebranded back to ConnectWise ScreenConnect. [7]

On Thursday, February 22, 2024, version 6 of the self-hosted edition server application of ScreenConnect reported a vulnerability. A patch was available for the latest version (23) the same day, offering a temporary free upgrade. [8]

Later in 2024, ConnectWise ScreenConnect was rebranded back to ScreenConnect. [9]

Product

ScreenConnect offers three primary products: [10]  

How it works

The product is available as a cloud-hosted Software as a Service (SaaS) or self-hosted server application [11] [12] that permits the primary user to host the software on their own servers, PC, virtual machine (VM), or virtual private server (VPS). Once installed, the central web application can be made visible inside and outside of the local area network (LAN). ScreenConnect has a proprietary protocol and exposes an open architecture structure that can be utilized by users to implement custom plugins, scripting, or various integrations.

A generic use model would start with a host initiating a session through the central web application. A participant would then join a session by clicking on an email link or via the guest page of the application. An unattended client can be created and deployed to a targeted machine without the need for human intervention. [13] [14] The executable is ScreenConnect.ClientService.exe (x86) on Windows-based OSs, and is signed by a COMODO RSA Code Signing CA certificate [Publisher: ScreenConnect Software].

Features

Most commonly expected features for a product in this arena are present. Examples include reboot and reconnect, drag-and-drop file transfer, screen recording, safe mode support, multiple monitor, command line access, wake-on-LAN, VoIP, and chat. More advanced capabilities include Backstage, a background troubleshooting mode that provides secure access to system tools without disrupting the end user; centralized device and process management; a shared toolbox for scripts and executables; agent deployment tools for large-scale rollouts; and optional bridge connectivity to RDP or VNC sessions on unmanaged devices. [15]

In addition to features that facilitate communication, ScreenConnect has offered control over branding and customization of the product design, logo, color scheme, icons, text strings, and localization. In 2025, some higher-risk customizations (such as hiding the connection banner or system-tray icon) were restricted to reduce opportunities for misuse, while limited visual options remain available. [16]

Security

The software is self-hosted providing users the ability to control the flow of data behind their own firewall and security implementations. ScreenConnect uses 256-bit AES encryption to package and ship data, supports two-factor authentication, has server-level video auditing, and granular role-based security. Forms-based and Windows Authentication are optional authentication methods for security purposes.

Compatibility

The host (presenter or technician) can utilize Mac, Linux, Windows, iOS, or Android operating systems. Guest (customer or participant): can connect from Mac, Linux, or Windows. ScreenConnect can also be utilized to remotely support Android devices, with complete view and control available for devices manufactured by Samsung.

Integrations

ScreenConnect supports third-party integrations [17] such as Acronis Cyber Protect Cloud [18] , Freshdesk [19] , and Zendesk [20] and ServiceNow. [21] ScreenConnect also integrates with other ConnectWise products, including ConnectWise RMM and PSA.  

Technology

Server

The on-site ScreenConnect server is self-hosted and runs as a .NET Framework application. On Microsoft Windows, it runs as a set of services. In 2015, ScreenConnect launched a hosted cloud platform, providing a way to use the ScreenConnect software with no local server installation required.

The ScreenConnect server runs as a set of four discrete services:

Clients

ScreenConnect sessions are arranged through the web application. Once users join sessions, a ScreenConnect client is launched to connect to the Relay service. ScreenConnect targets clients based on device and operating system:

Licensing model

ScreenConnect is commercial software. Licenses sit in a pool and are available to any user on any workstation. There are two types of licenses: cloud and self-hosted (on-premises).

Self-hosted

ScreenConnect’s self-hosted license model uses a perpetual license. Purchases include one year of maintenance and support, which provides access to major and minor software updates released during that period. [24] [25] Maintenance and support can be renewed at the end of the first year. Renewal pricing depends on when the update license was last renewed. [26] [27] Licensing is by concurrent sessions, starting at three concurrent sessions with unlimited named users. Additional concurrent-session licenses may be added. [25]

Cloud

ScreenConnect offers two types of cloud licensing: support and access. Support licenses include remote support sessions, remote meetings, and unattended access. [28] [29] These use a concurrent technician model, meaning the number of simultaneous sessions depends on the number of licenses purchased. Access licenses focus exclusively on unattended device access. [28] These use an agent-based model, where pricing is determined by the number of devices under management, but with no limit on the number of concurrent connections. [28]

Misuse

ScreenConnect is one of several remote monitoring and management (RMM) tools being employed in rising cybersecurity attacks. [30]

The program, under its previous name of ConnectWise ScreenConnect, has been used in fraudulent technical support scams where the fraudster is able to gain control of the victim's computer by telephoning and tricking the user into installing the software and permitting a connection. The free trial period has been utilized to avoid any software costs in doing this, and similar products, such as TeamViewer, AnyDesk, and Ammyy Admin, have also been used for the scam. [31] [32]

Cybercriminal group LockBit exploited vulnerabilities in ScreenConnect. [33] Following this event, ConnectWise CISO Patrick Beggs reported that the company has since discovered new processes to identify unpatched instances. [34] The parent company has since spoken publicly about how it leveraged AI to navigate the security crisis. [35]

In August 2025, ScreenConnect limited several high-risk branding and interface customizations to reduce opportunities for misuse by malicious actors and to improve end-user awareness. The connection banner and system-tray icon can no longer be hidden; product logos and the Guest-page background were reset to defaults; and downloaded client filenames can no longer be renamed. The company indicated it is considering limited, low-risk branding options (for example, background colors/gradients). [16]

See also

References

  1. 1 2 "ConnectWise acquires North Carolina software services company". www.bizjournals.com. Retrieved 2025-09-10.
  2. "About ScreenConnect Remote Support Software and ScreenConnect Software, LLC". ScreenConnect. ScreenConnect, LLC. Retrieved 3 April 2015.
  3. "ConnectWise Acquires ScreenConnect". ConnectWise. Archived from the original on 6 April 2015. Retrieved 3 April 2015.
  4. "ScreenConnect joins the ConnectWise family!". ScreenConnect. ScreenConnect, LLC. Retrieved 3 April 2015.
  5. "ScreenConnect is Now ConnectWise® Control™". Connectwise. Retrieved 3 June 2017.
  6. Panettieri, Joe (2016-11-06). "ConnectWise Officially Rebrands LabTech, Quosal, ScreenConnect -". ChannelE2E. Retrieved 2025-07-08.
  7. "We're bringing back the ScreenConnect name | ConnectWise". screenconnect.connectwise.com. Retrieved 2023-05-15.
  8. "ConnectWise ScreenConnect 23.9.8 security fix". ConnectWise. 19 February 2024.
  9. "ScreenConnect 2024.4 Release notes". ScreenConnect. 7 January 2025.
  10. Welekwe, Amakiri (2024-02-14). "ScreenConnect Review 2025". Comparitech. Retrieved 2025-09-10.
  11. Wareprise Remote Support Software
  12. Ohlhorst, Frank (June 9, 2013). eWeek ScreenConnect Shifts Remote Support From the Cloud Back to the Desktop
  13. Jon Jacobi PCWorld Reviews ScreenConnect Archived 2011-04-30 at the Wayback Machine
  14. "Remote Support Software and Services | ConnectWise Control". Archived from the original on 2010-04-19. Retrieved 2010-12-02.
  15. "Key Features". ScreenConnect. Retrieved 2025-10-01.
  16. 1 2 "ScreenConnect Customizations: What's Different and Why". ScreenConnect. Retrieved 2025-10-01.
  17. "ConnectWise ScreenConnect Integrations in 2025". slashdot.org. Retrieved 2025-09-10.
  18. "ConnectWise ScreenConnect". Acronis. Retrieved 2025-09-10.
  19. "ConnectWise ScreenConnect". www.freshworks.com. Retrieved 2025-09-10.
  20. "ConnectWise Control Remote Support App Integration with Zendesk Support". www.zendesk.com. Retrieved 2025-09-10.
  21. "ScreenConnect Remote Support Integration - ServiceNow Store". store.servicenow.com. Retrieved 2025-10-01.
  22. "ScreenConnect 5.2 Release Log". ScreenConnect Remote Support Software User Forum. ScreenConnect, LLC. Archived from the original on 8 April 2015. Retrieved 3 April 2015.
  23. "Softsea reviews ScreenConnect". Archived from the original on 2010-08-18. Retrieved 2010-12-02.
  24. "On-Premise Remote Support & Access Software". ScreenConnect. Retrieved 2025-10-01.
  25. 1 2 "On-premises licensing". ConnectWise Documentation. Retrieved 23 September 2025.
  26. "Upgrade your ScreenConnect Remote Support Software". ScreenConnect. ScreenConnect, LLC. Retrieved 16 April 2015.
  27. "Renew or upgrade an on-premises license". ConnectWise Documentation. Retrieved 23 September 2025.
  28. 1 2 3 "ConnectWise Control Review and Pricing in 2025". business.com. Retrieved 2025-10-01.
  29. "ScreenConnect Pricing 2025". Capterra. Retrieved 2025-10-01.
  30. Mitchell, Sean (12 March 2025). "Rise in cyberattacks using legitimate RMM tools noted". SecurityBrief Australia.
  31. Sean Gallagher (28 January 2017). ""You took so much time to joke me"—two hours trolling a Windows support scammer". Ars technica. Archived from the original on 2 August 2018. Retrieved 25 October 2018. Details of a technical support scam misusing ConnectWise Control with the (now discontinued) URL FIX2X.SCREENCONNECT.COM.
  32. Technical support scammers (8 July 2017). "Fake ConnectWise Control login purporting to be British Telecom support (note name of site)". bttechnicaldepartment.screenconnect.com. Archived from the original on 8 July 2017. Retrieved 8 July 2017.
  33. Goodin, Dan (22 February 2024). "Ransomware associated with LockBit still spreading 2 days after server takedown". Ars Technica. Retrieved 23 February 2024.
  34. Masters, Jim (2024-02-22). "ConnectWise Vulnerabilities Raise Ransomware Alarms". MSSP Alert. Retrieved 2025-09-10.
  35. "MSSP Alert Live Celebrates the Top 250 MSSPs for 2024 with Industry Leaders in Austin". www.cyberriskalliance.com. Retrieved 2025-09-10.