Last Friday, it came into consideration that the famous remote desktop software maker AnyDesk hacked. As an outcome, it has to compromise with its production systems.
One of the famous companies situated in Germany stated regarding this incident by following a security audit. Later on, the company informed a few of the concerned authorities that it was not a ransomware attack at all.
In a statement, it was said by the company, “We have canceled all security-related certificates and remediate or replace systems where necessary. We will be nullifying the previous code signing certificate for our binaries shortly and have already initiated replacing it with a new one.”
Furthermore, it has also come to notice that AnyDesk nulled & voided all passwords to its web portal namely my. Anydesk[.]com. Apart from this, it is also impulsing users to make changes to their passwords, in case they are reusing the same password on other digital services.
Later on, a piece of advice was provided to the users. It was regarding downloading the recent version of the software that has a new code signing certificate.
One of the matters that come into view is that AnyDesk hacked did not expose the information regarding the timing and the way of the breaching of its production systems. But the matter of remorse is that at present the information regarding the robbing of crucial data and hacking is not available. Besides, the saddest thing is that it highlighted that fake information that none of the end-users have been affected.
At the beginning of this week, Günter Born of BornCity disclosed one piece of crucial information: AnyDesk had been under maintenance since January 29 of this year. However, the issue brought to everyone’s attention after some time. Apart from this, on January 24, the company declared an alert for users regarding the “intermittent timeouts” and “degradation of services” related to its Customer Portal.
The surprising thing is that AnyDesk software possesses more than 170K customers. The list of these customers involved-
- Amedes
- AutoForm Engineering
- LG Electronics
- Samsung Electronics
- Spidercam
- Thales
The confession comes a day after Cloudflare stated that a suspicious nation-state attacker breached it via stealing credentials. The main purpose behind it was to access illegal access to its Atlassian server. As a result, it accesses a few of the essential documents as well as a limited amount of source code.
