Hackers Selling AnyDesk Users' Login Credentials On Cybercriminal Forums

A modern security breach has exposed AnyDesk’s buyer’s credentials, inserting their accounts and gadgets at likelihood.

On February 3, 2024, Resecurity stumbled on a total lot of likelihood actors peddling compromised AnyDesk credentials on cybercriminal forums.

Over 18,000 credentials were leaked and equipped in the marketplace on the Darkish Web.

Anydesk’s public assertion about the safety breach.

The attack is believed to thrill in came about in unhurried January, and some customers are composed the bid of compromised credentials.

AnyDesk’s buyer credentials listed by the likelihood actor “Jobaaaaa”.

The leaked data incorporates the usernames, passwords, number of active connections, session duration, and associated email addresses, reads the Security file.

This data will be feeble for centered phishing attacks, memoir takeovers, and even malware distribution.

And this would possibly well well maybe also give attackers treasured insights into their online activity and make them a top goal.

“This data is splendid for technical toughen scams and mailing (phishing),” added the likelihood actor.

Myth credentials suspected to be compromised are concept to thrill in been bought through infostealer infections.

Suggested Mitigation:

• Straight substitute the AnyDesk password, and steer sure of the bid of the the same password across a pair of accounts.
• Beef up security by enabling Multi-Aspect Authentication (MFA) for AnyDesk memoir, requiring an extra code from but any other system for login.
• Explore the usage of AnyDesk’s whitelist feature to limit bag entry to to relied on contributors or gadgets.

Care for updated on Cybersecurity news, Whitepapers, and Infographics. Word us on LinkedIn & Twitter.