The popular remote desktop software AnyDesk has suffered a security breach that has compromised its production systems, the German company revealed last Friday. This incident, discovered after a security audit, is not related to a ransomware attack, but has led the company to notify the relevant authorities.
As part of precautionary measures, AnyDesk has revoked all security-related certificates and has replaced or remediated the necessary systems. “We will revoke the previous code signing certificate for our binaries shortly and have already started replacing it with a new one,” the company stated in a release. In addition, AnyDesk has revoked all passwords for its web portal, my.anydesk.com, urging users to change their passwords, especially if they have been reused in other online services.
The company also recommends that users download the latest version of the software, which includes a new code signing certificate. Although AnyDesk has not specified when or how its production systems were compromised, and whether any information was stolen as a result of the hack, it has emphasized that there is no evidence that end-user systems have been affected.
This revelation comes a day after Cloudflare announced that it had been the victim of an attack by a suspected state actor, using stolen credentials to unauthorizedly access its Atlassian server and, ultimately, access certain documentation and a limited amount of source code.
AnyDesk, which has over 170,000 clients including Amedes, AutoForm Engineering, LG Electronics, Samsung Electronics, Spidercam, and Thales, has taken this incident very seriously and is implementing all necessary measures to ensure the integrity and trust in its products. The situation is under control and it is safe to use AnyDesk, as long as you ensure that you are using the latest version of the software.
Source: OpenSecurity.es