Anydesk Breach

The company reports having 170,000 customers, including 7-Eleven, Comcast, Samsung, MIT, NVIDIA, SIEMENS, and the United Nations.

Per AnyDesk Incident Response notice:

Following our public statement on 2 February 2024 about a cyber incident at AnyDesk https://anydesk.com/en/public-statement-2-2-2024, we can assure you that we immediately took all necessary steps to investigate and mitigate the incident and continue to cooperate with all relevant authorities. All AnyDesk versions obtained from our official sources are safe to use. However, we recommend using the latest versions 7.0.15 and 8.0.8. The forced password reset for our customer portal my.anydesk.com was done out of an abundance of caution. We have no evidence that any customer data has been exfiltrated. Again, we also have no evidence that any end-user devices have been affected by this incident.

Transparency, company integrity and trust in our products is of paramount importance to us. However, it is the nature of a cyber incident that not all information can be made available at once. Therefore we have set up an FAQ section available at https://anydesk.com/en/faq-incident, which will be updated to address our customers’ concerns and to correct any false information that may be circulating about the incident.

You can reach us by email at hotline@anydesk.com or by phone at +1 727 349 4750

Per their public comment

Following indications of an incident on some of our systems, we conducted a security audit and found evidence of compromised production systems. We immediately activated a remediation and response plan involving cyber security experts CrowdStrike. The remediation plan has concluded successfully. The relevant authorities have been notified and we are working closely with them. This incident is not related to ransomware.

We have revoked all security-related certificates and systems have been remediated or replaced where necessary. We will be revoking the previous code signing certificate for our binaries shortly and have already started replacing it with a new one.

Our systems are designed not to store private keys, security tokens or passwords that could be exploited to connect to end user devices. As a precaution, we are revoking all passwords to our web portal, my.anydesk.com, and we recommend that users change their passwords if the same credentials are used elsewhere.

To date, we have no evidence that any end-user devices have been affected. We can confirm that the situation is under control and it is safe to use AnyDesk. Please ensure that you are using the latest version, with the new code signing certificate.

The integrity and trust in our products is of paramount importance to us and we are taking this situation very seriously.

If you have any further questions, please do not hesitate to contact us.

You can reach us by email at hotline@anydesk.com or by phone at +1 727 349 4750

If you have any questions or concerns, please feel free to contact us.

    By providing a telephone number and submitting the form you are consenting to be contacted by SMS text message (our message frequency may vary). Message & data rates may apply. Reply STOP to opt-out of further messaging. Reply HELP for more information. See our Privacy Policy.