Recently, AnyDesk, a popular remote desktop software, fell victim to a cyber attack that compromised their production systems. As a result, AnyDesk has made it mandatory for users to reset their passwords to ensure security. The company has not provided details about how the breach occurred or whether any information was stolen, but it has taken various measures to address the situation, including revoking security certificates and urging users to download the latest software to protect their systems.

Although there is no evidence that end-user systems were affected, cybersecurity firm Resecurity has discovered that threat actors are selling AnyDesk customer credentials online. This is concerning because it raises the possibility of scams and phishing. Therefore, AnyDesk users must reset their passwords and take additional security measures, such as multi-factor authentication, to protect their accounts from unauthorised access.

TechCrunch said the cyber attack led to a nearly week-long lockdown of AnyDesk’s systems. However, the company assures users that there is no evidence of compromised end-user systems and has advised users to update to the latest software version. AnyDesk is widely used by IT professionals for remote connections to client devices and has over 170,000 customers, including prominent names like Comcast, LG, Samsung, and Thales. Unfortunately, the software’s widespread use also extends into less savoury territories, making it a tool of choice for threat actors and ransomware gangs to infiltrate and maintain access to victims’ computers and data. This underscores the significant impact of the security breach beyond its immediate operational disruptions.

For more details, please visit the original article on The Hacker News website & Tech Crunch Website:

https://www.techcrunch.com/2024/02/05/remote-access-giant-anydesk-resets-passwords-and-revokes-certificates-after-hack/

https://www.thehackernews.com/2024/02/anydesk-hacked-popular-remote-desktop.html