On February 2, 2024, AnyDesk acknowledged that it was the victim of a cyberattack that gave unauthorized users access to its operational systems. According to BleepingComputer, the breach was discovered after there were indications of a problem on the server, resulting in the compromise of source code and private code signing keys.
AnyDesk did not reveal details about the data theft, but BleepingComputer reported that source code and code-signing certificates were among the items stolen during the attack.
About the breach and AnyDesk's response
AnyDesk has 170,000 customers, including organizations such as 7-Eleven, Comcast, Samsung, MIT, NVIDIA, SIEMENS, and the United Nations. After learning about the breach, the company immediately launched a security audit and hired cybersecurity firm CrowdStrike to carry out a thorough response plan.
As part of its response procedures, AnyDesk has revoked security-related certificates and replaced or repaired affected systems. It also assured users that there is no evidence yet that this breach compromises end-user devices.
In an official statement, AnyDesk said, “The situation is under control and we can confirm that it is safe to use AnyDesk. Please make sure you are using the latest version with the new code signing certificate.”
Although AnyDesk claims that no authentication tokens have been obtained, the company recommends users change their passwords, especially if they are used on other platforms, and uses caution to ensure that all web You have disabled your portal password.
In response to questions about the attack, AnyDesk explained: “AnyDesk is designed to prevent session authentication tokens from being stolen. They only exist on the end user's device and are tied to the device's fingerprint. We do not allow these tokens to touch our systems. Never.”
AnyDesk has already begun replacing compromised code signing certificates to further strengthen security. This update is reflected in AnyDesk 8.0.8, released on January 29th.
Due to the potential risks, we strongly recommend that all AnyDesk users switch to the latest version of the program. Users are also being asked to update their passwords on other platforms as a precaution.
Protecting your identity and personal information
A breach of personal data can have serious consequences, including identity theft, financial fraud, and job loss. The best thing you can do is a) Have reliable cybersecurity protection b) If you are affected, try to find out as soon as possible. We encourage our readers to access identity protection designed to address these challenges.
and identity protectionyou can:
- check Check to see if your data (emails, numbers, passwords, credit cards) has been leaked or leaked to the dark web.
- Safe Monitor your social media accounts with our social media account monitoring tool and receive personalized reports.
- create The strongest, most hackable passwords (kept safe in your vault).
- enjoy Trend Micro checks websites and blocks trackers for a safer browsing experience.
- receive Comprehensive repair and insurance services, 24/7 support.
Offering both free and paid services, ID Protection has 24/7 support from the world's leading cybersecurity companies to ensure you have the best protection possible. Trend Micro is trusted by 8 of the top 10 Fortune 500 companies, and we're here to help.
Why not try it today? As always, I hope you found this article interesting or informative reading.If so, please share Please post with your family and friends to help keep our online community safe and informed. Please consider leaving a like or comment below.
