AnyDesk Hacked

Remote desktop software maker AnyDesk announced on Friday that it had suffered a cyberattack that compromised its production systems.

The German company said that the incident it detected after the security audit was not a ransomware attack and that it informed the relevant authorities.


"We have revoked all security-related certifications and systems have been improved or replaced where necessary," the company said in a statement. said . “We will shortly revoke the previous code signing certificate for our binaries and have already started replacing it with a new one.”

As an abundance of caution, AnyDesk has also canceled all passwords on its web portal my.anydesk[.]com and is urging users to change their passwords if the same passwords are reused on other online services.

Users are also advised to download the latest version of the software, which comes with a new code signing certificate.

AnyDesk did not disclose when or how its production systems were breached. It is not yet known whether any information was stolen following the attack. However, it was emphasized that there was no evidence that any end user systems were affected.

Earlier this week, BornCity's Günter Born announced that AnyDesk was undergoing maintenance on January 29. The issue was addressed on February 1. The company had also previously warned users about "intermittent timeouts" and "service degradation" on January 24. Customer portal.

AnyDesk has more than 170,000 customers, including Amedes, AutoForm Engineering, LG Electronics, Samsung Electronics, Spidercam and Thales.

The statement comes a day after Cloudflare said it was breached by a suspected nation-state attacker who used stolen credentials to gain unauthorized access to its Atlassian server, ultimately gaining access to some documents and a limited amount of source code.