AnyDesk Breach - February 2024

In February 2024, AnyDesk reported finding evidence of compromised systems. Reporting suggests that although data was stolen, this was not a ransomware attack.

Additional reporting suggested that cyber actors were selling access to compromised AnyDesk credentials on the dark web.

AnyDesk revoked security-related certificates and reset user passwords 'as a precaution'.

anydesk.com

https://anydesk.com/en/public-statement-2-2-2024

www.resecurity.com

https://www.resecurity.com/blog/article/following-the-anydesk-incident-customer-credentials-leaked-and-published-for-sale-on-the-dark-web

www.infosecurity-magazine.com

https://www.infosecurity-magazine.com/news/anydesk-hit-cyberattack-customer/

anydesk.com

https://anydesk.com/en/public-statement

web.archive.org

https://web.archive.org/web/20240206140746/https://anydesk.com/en/public-statement

web.archive.org

https://web.archive.org/web/20240210163104/https://anydesk.com/en/faq-incident

web.archive.org

https://web.archive.org/web/20240207081202/https://anydesk.com/en/public-statement-2-2-2024