February 2, 2024 at 05:21PM
Remote access solution AnyDesk suffered a cyberattack leading to data theft from its production systems. The company, with 170,000 clients including 7-Eleven and Samsung, reassures the safety of the software and has initiated security measures after revoking certificates. It urges users to update to version 8.0.8 and change passwords due to potential compromise.
Summary of Meeting Notes:
– AnyDesk recently experienced a cyberattack, resulting in unauthorized access to the company’s production systems and theft of data.
– The company, which has 170,000 customers including major organizations such as 7-Eleven, Comcast, and Samsung, detected indications of the attack on their product servers and engaged cybersecurity firm CrowdStrike to respond.
– AnyDesk has revoked security-related certificates, replaced compromised systems, and reassured customers that their service remains safe to use. However, the company urges all users to switch to the latest software version, as the old code signing certificate will soon be revoked.
– While AnyDesk claims that no authentication tokens were stolen, they are revoking all passwords to their web portal and advise users to change their passwords if they are used on other sites.
– Access to the AnyDesk client was temporarily disabled for maintenance following the cyber incident. AnyDesk has restored access but has not provided explicit details on the cause of the maintenance.
Ultimately, it is important for all AnyDesk users to update to the newest software version, revoke old code signing certificates, and change their passwords as a precautionary measure.