Priya PatelTLDR:
Popular remote desktop software AnyDesk has experienced a cyber attack that compromised its production systems. The company has revoked all security-related certificates and replaced compromised systems, and is urging users to change their passwords and download the latest software version. No evidence suggests that end-user systems have been affected, but specific details of the breach and whether any information was stolen remain undisclosed.
The German company has suffered a cyber attack that has impacted its production systems, leading to a compromise of security-related certificates. AnyDesk has since revoked these certificates and replaced compromised systems as part of its remediation efforts. To ensure the safety of users, the company has revoked all passwords to its web portal, my.anydesk[.]com, and advises users to change their passwords if they have been used on other online services. Users are also encouraged to download the latest version of the software that comes with a new code signing certificate.
Although the breach exposes vulnerabilities in AnyDesk’s security, the company has emphasized that there is no evidence of any end-user systems being affected. The specifics of the breach, such as when and how the production systems were breached, are undisclosed. It is also unclear whether any information was stolen as a result of the attack.
Prior to the disclosure of the breach, AnyDesk had been under maintenance since January 29, according to reports from Günter Born of BornCity. The company addressed the issue on February 1. AnyDesk boasts a customer base of over 170,000 organizations, including major companies such as LG Electronics and Samsung Electronics.
This incident comes on the heels of Cloudflare’s disclosure of a breach, in which a suspected nation-state attacker gained unauthorized access to its Atlassian server. These breaches underscore the importance of robust security measures and ongoing monitoring to mitigate cyber threats.
