February 4, 2024 at 12:19PM
On Feb 3, 2024, AnyDesk reported a cyber attack, compromising its production systems. The German company revoked security certificates, urged password changes, and recommended downloading new software versions. No evidence of end-user system effects was found. Cybersecurity firm Resecurity discovered threat actors selling customer credentials for potential scams, prompting concerns over unauthorized access after the incident.
Key takeaways from the meeting notes:
– AnyDesk, a remote desktop software maker, suffered a cyber attack compromising its production systems.
– The attack was discovered following a security audit and is not a ransomware attack.
– AnyDesk has taken measures to revoke security certificates, remediate or replace affected systems, and urge users to change passwords.
– The company is recommending users to download the latest software version with a new code signing certificate.
– AnyDesk did not disclose when and how its production systems were breached and is uncertain if any information was stolen.
– Cybersecurity firm Resecurity found threat actors advertising AnyDesk customer credentials for sale, potentially for technical support scams and phishing.
– The company is investigating further, and updates will be provided if new information arises.