Article Details
Scrape Timestamp (UTC): 2024-02-03 04:01:52.588
Source: https://thehackernews.com/2024/02/anydesk-hacked-popular-remote-desktop.html
Original Article Text
Click to Toggle View
AnyDesk Hacked: Popular Remote Desktop Software Mandates Password Reset. Remote desktop software maker AnyDesk disclosed on Friday that it suffered a cyber attack that led to a compromise of its production systems. The German company said the incident, which it discovered following a security audit, is not a ransomware attack and that it has notified relevant authorities. "We have revoked all security-related certificates and systems have been remediated or replaced where necessary," the company said in a statement. "We will be revoking the previous code signing certificate for our binaries shortly and have already started replacing it with a new one." Out of an abundance of caution, AnyDesk has also revoked all passwords to its web portal, my.anydesk[.]com, and it's urging users to change their passwords if the same passwords have been reused on other online services. It's also recommending that users download the latest version of the software, which comes with a new code signing certificate. AnyDesk did not disclose when and how its production systems were breached. It's currently not known if any information was stolen following the hack. However, it emphasized there is no evidence that any end-user systems have been affected. Earlier this week, Günter Born of BornCity disclosed that AnyDesk had been under maintenance on January 29. The issue was addressed on February 1. Previously, on January 24, the company also alerted users of "intermittent timeouts" and "service degradation" with its Customer Portal. AnyDesk boasts over 170,000 customers, including Amedes, AutoForm Engineering, LG Electronics, Samsung Electronics, Spidercam, and Thales. The disclosure comes a day after Cloudflare said it was breached by a suspected nation-state attacker using stolen credentials to gain unauthorized access to its Atlassian server and ultimately access some documentation and a limited amount of source code. ⚡ Free Risk Assessment from Vanta Generate a gap assessment of your security and compliance posture, discover shadow IT, and more.
Daily Brief Summary
AnyDesk announced a security breach resulting in production system compromise detected after a security audit.
The incident was not a ransomware attack, and authorities have been notified; compromised systems have been remediated or replaced.
AnyDesk revoked all previous security certificates and is issuing new ones, while also urging users to reset passwords.
Users are advised to download the latest AnyDesk version featuring a new code signing certificate to ensure safety.
Specific details on the date and method of the breach were not provided, and it's unclear if data was stolen.
There is currently no evidence suggesting that end-user systems have been compromised due to this breach.
AnyDesk services over 170,000 customers globally and had recently experienced maintenance issues and service disruptions.
This announcement followed a separate disclosure by Cloudflare about a breach due to stolen credentials suspected to be a nation-state activity.