The well-known AnyDesk, used for remote access to systems, confirmed that it recently suffered a cyber attack. In this attack, hackers gained access to the company's production systems, including all source code and private code-signing keys.
AnyDesk revealed which became aware of this attack after detecting a security incident on one of its production servers. After confirming that its systems had been compromised, the company activated a response plan with the help of security firm CrowdStrike.
Despite being a sensitive issue, the company claims that the incident is not a ransomware attack and that it has notified the competent authorities. AnyDesk also states that “revoked all certificates associated with security and systems were patched or replaced when necessary“. It will also revoke the previous code signing certificate for your binaries and replace it with a new one.
BUT: Microsoft Teams targeted by Russia-linked hacking attacks
To resolve this sensitive security issue, the company is seeking to eliminate all entry points for hackers into its services. You want to limit attack vectors and ensure the security of all your users. It has already taken some measures, but there is a special one to be applied.
You are revoking all passwords for your portal, my.anydesk.com. At the same time, it recommends that users change their passwords if the same credentials are also being used elsewhere. The company claims to have no evidence that any end user device has been affected.
This is a serious problem, especially given the number of customers that Anydesk has. It is being reported that there are 170.000 customers, including some very relevant ones, which include the United Nations, Samsung, Comcast and Nvidia. It is expected that the company's security situation will be resolved very soon and all users of these services will be protected.
