Topics
Latest
AI
Amazon
Image Credits:PhotoMosh
Apps
Biotech & Health
Climate
Cloud Computing
Commerce
Crypto
Enterprise
EVs
Fintech
Fundraising
Gadgets
Gaming
Government & Policy
computer hardware
Layoffs
Media & Entertainment
Meta
Microsoft
Privacy
Robotics
Security
Social
blank space
Startups
TikTok
exile
Venture
More from TechCrunch
Events
Startup Battlefield
StrictlyVC
Podcasts
Videos
Partner Content
TechCrunch Brand Studio
Crunchboard
Contact Us
Remote desktop software provider AnyDesk confirmed late Friday that a cyberattack allowed hackers to gain admission to the company ’s output systems , order the company in lockdown for almost a week .
AnyDesk ’s software package is used by millions of IT master to apace and remotely connect to their clients ’ devices , often to avail with technological issues . Onits website , AnyDesk exact to have more than 170,000 customer , including Comcast , LG , Samsung and Thales .
The software is also a popular tool among threat actors and ransomware gangs , which have long used the software program for gaining and maintaining access to a victim ’s computer and datum . U.S. cybersecurity representation CISA said in January thathackers had compromise federal agencies using legitimate outback desktop software system , include AnyDesk .
AnyDesk said that as part of its incident response , the society had lift all security - tie in certificates , remediated or replaced systems where necessary and invalidated all passwords to AnyDesk ’s customer entanglement portal .
“ We will be overturn the late code signing credentials for our binary star shortly and have already set out replace it with a new one , ” the company contribute Friday .
AnyDesk said the incident is not related to ransomware but did not let out the specific nature of the cyberattack .
Join us at TechCrunch Sessions: AI
Exhibit at TechCrunch Sessions: AI
AnyDesk voice Matthew Caldwell did not respond to an e-mail from TechCrunch . CrowdStrike , which is work with AnyDesk to remediate the cyberattack , decline to suffice TechCrunch ’s question when reached Monday .
AnyDesk did not reply to questions ask if any client data was accessed , though the party said in its program line that there is “ no grounds that any end - substance abuser organization have been affected . ”
“ We can confirm that the situation is under dominance and it is safe to use AnyDesk , ” AnyDesk said . “ Please insure that you are using the later version , with the new computer code signing credential . ”
AnyDesk has already faced literary criticism for its handling of the cyberattack so far . Asfirst reported by German blogger Günter Born , AnyDeskinitially claimedthe four Clarence Shepard Day Jr. of disruption starting January 29 , during which the caller close up user from the ability to lumber in , was “ care . ” Jake Williams , a veteran incident responder , accused AnyDesk ina post on Xof pulling a “ PR move ” by disclosing the cyberattack to customers just before the weekend .
Security researchers say hackers are selling access to AnyDesk accounts supposedly affect by the falling out on known cybercrime forums , but also note that the steal account details are likely sourced from previous malware infection affect password - stealing malware on a substance abuser ’s computer .
Do you have any more information about this incident ? you could contact Carly Page securely on Signal at +441536 853968 orby electronic mail . you could alsocontact TechCrunch via SecureDrop .
