AnyDesk announced that it recently suffered a cyber attack in which attackers managed to gain access to the company’s production systems. According to the source, hackers stole the software source code and code signing keys.
Let us remind you that AnyDesk is the developer of the solution of the same name for remote desktop management. The application is very popular in the corporate environment. According to AnyDesk, the company has more than 170 thousand clients around the world, including Samsung, NVIDIA, Siemens, etc.
According to available data, AnyDesk specialists discovered the hack after identifying suspicious activity in the company’s internal systems. After conducting a security audit, they determined that internal systems had been compromised by unknown actors. Specialists from CrowdStrike, an information security company, were brought in to investigate the incident.
The company confirmed that the hacker attack was not related to ransomware. AnyDesk did not provide detailed information about the incident, only mentioning that internal servers were hacked. The company has already revoked all security-related certificates and has also restored the affected systems.
The company’s customers have been assured that AnyDesk is safe to use and there is no evidence that the incident affected end user devices. “We can confirm that the situation is under control and AnyDesk is safe to use. Please make sure you are using the latest version of the application with a new code signing certificate.”the company said in a statement.
Although AnyDesk did not provide details regarding the incident, the source said that the hackers managed to steal the software source code and code signing certificates. The company’s statement notes that the attackers were unable to steal authentication tokens, but for security reasons, the company reset all passwords to its web portal, offering users a chance to change them. In addition to this, AnyDesk has already started replacing code signing certificates in its products.