AnyDesk, a company that offers remote desktop application services, has revealed that its production systems have been hacked. In response, the company has taken steps to enhance its security measures, including the revocation of all security-related certificates and the reset of all web portal passwords as a precautionary measure.
In a statement released on Friday, AnyDesk reassured its customers that the breach did not extend to end user devices. The company emphasized that its systems are not designed to store sensitive information such as private keys, security tokens, or passwords that could be exploited to gain access to end user devices. This assertion aims to alleviate concerns regarding the potential compromise of customer data.
Furthermore, AnyDesk has stated that it is collaborating with law enforcement agencies to address the security breach. Despite the breach, the company has stated that there is currently no evidence of ransomware being involved in the incident.
In response to the security breach, AnyDesk has initiated internal password rotations and has advised its customers to update any passwords used for other accounts as an additional precaution. The company has also encouraged users to ensure that they are utilizing the latest version of the application, complete with the new code signing certificate, to guarantee secure usage.
Despite the breach, AnyDesk has emphasized that there is no evidence to suggest that any end user devices have been affected. The company has sought to assure its customers that the situation is under control and that it is safe to continue using AnyDesk’s services.
It is worth noting that remote access management tools, like AnyDesk, are often targeted by cybercriminals. In a joint advisory issued last summer, both the Cybersecurity and Infrastructure Security Agency (CISA) and the National Security Agency (NSA) warned about threat actors utilizing remote monitoring and management systems, including AnyDesk and ScreenConnect, to infiltrate organizations and federal agencies. This advisory underscores the importance of reinforcing the security measures for such remote access tools.
In conclusion, AnyDesk’s announcement of the security breach and the subsequent precautionary measures underscore the ongoing challenges posed by cyber threats. The company’s response to the incident, including the revocation of security certificates and password resets, reflects a proactive approach to mitigating potential risks for its customers. As the company continues to work with law enforcement agencies to address the breach, customers are advised to adhere to the recommended security measures and utilize the latest version of the application to ensure a secure user experience.