Monday, June 2, 2025
News PouroverAI
Visit PourOver.AI
No Result
View All Result
  • Home
  • AI Tech
  • Business
  • Blockchain
  • Data Science & ML
  • Cloud & Programming
  • Automation
  • Front-Tech
  • Marketing
  • Home
  • AI Tech
  • Business
  • Blockchain
  • Data Science & ML
  • Cloud & Programming
  • Automation
  • Front-Tech
  • Marketing
News PouroverAI
No Result
View All Result

AnyDesk Breach Calls Urgent Attention To Code Signing Security

February 15, 2024
in Automation
Reading Time: 5 mins read
0 0
A A
0
Share on FacebookShare on Twitter


On February 2, 2024, popular remote access solution AnyDesk disclosed that it had suffered a cyberattack that compromised its production systems. AnyDesk revealed that they detected the breach in mid-January during a security audit. They immediately began a forensic investigation that confirmed that the attack began in December 2023.

\"\"

Post the investigation, the team at AnyDesk worked closely with experts at CrowdStrike to initiate a threat remediation and response plan. As part of the plan, they revoked all security-related certificates and remediated or replaced affected systems. They would also be revoking their code signing certificate and issuing software updates with a new certificate.

AnyDesk further reported that as precautionary measures, they have revoked all passwords for their customer web portal, my.anydesk.com, and recommended users to reset their passwords if they have been used on other platforms. They also urged users not to download software or updates from unsecured third-party websites and to update to the latest software version with new code signing certificates.

What’s the Potential Impact of the Compromise?

AnyDesk hasn’t disclosed the root cause or the specifics of the attack. However, their threat mitigation plan, involving forced password resets and the replacement of the code signing certificate, does suggest that the attackers likely compromised user passwords and the company’s code signing certificate.

While AnyDesk claimed that—their systems are designed not to store private keys, security tokens, or passwords—they also did not rule out the theoretical possibility of password compromises. In case the attackers did compromise these passwords, they could misuse these to carry out credential-stuffing attacks, using the same passwords to authenticate and gain access to other services.

Highlighting the reality of this threat, the cybersecurity company Resecurity reported that on February 3, they found more than 18,000 AnyDesk credentials up for sale on the dark web for technical support scams and phishing. However, AnyDesk believes these credentials are old and might have been stolen from malware-infected end-user devices and, therefore, not related to the incident.

Another serious risk we are looking at is the misuse of the code signing certificate. Since there is a high possibility that the attackers accessed the company’s source code and stole the code signing keys, the threat of a software supply chain attack cannot be overlooked. Attackers could insert a malicious payload into AnyDesk’s code base and use the compromised code signing certificate to sign executables, making them appear legitimate, and distribute them to AnyDesk customers, resulting in a large-scale software supply chain attack.

AnyDesk has a large customer base (around 170,000 customers), including giants such as United Nations, NVIDIA, Samsung, Comcast, and SIEMENs. Considering the massive reach, a software supply chain attack would be nothing short of disastrous, just like the SolarWinds Orion Breach.

Secure Code Signing is Indispensable for Software Development and Software Supply Chain Security

Code signing certificates play a critical role in secure software development and delivery. These certificates stand as proof of software authenticity, integrity, and security. They are a testament to the software developer’s commitment to security and user trust.

Build secure code signing into your DevOps processes to ensure code integrity and security with AppViewX SIGN+

When software is appended with a digital signature from a code signing certificate, it indicates that the code has not been altered or tampered with since it was signed. Users can trust that the software comes from a legitimate source and, therefore, is safe to use. This is also why code signing certificates are a prime target for attackers. Stealing a company’s code signing certificate gives attackers wild control over software distribution, allowing them to impersonate the trusted developer and distribute malware to unsuspecting users, eroding their trust.

Identifying and revoking a compromised code signing certificate and cleaning up its misuse can be a complex and time-consuming process. In the meantime, users may continue to encounter compromised software that appears trustworthy and signed with a valid certificate. To prevent this, it is best to manage code signing keys efficiently and prevent code signing compromises.

In light of the increasing code signing-related attacks, the Certificate Authority (CA)/Browser Forum released new baseline requirements for code signing in June 2023. According to the latest mandate, all publicly trusted code signing private keys must be generated and stored in secure hardware crypto modules such as hardware security modules (HSMs) that are at least FIPS 140-2 Level 2 or Common Criteria EAL 4+. As HSMs are tamper-resistant by design, private keys are non-exportable and, therefore, minimize the risk of private key compromises.

Simplify and Modernize Code Signing with AppViewX SIGN+

In a world dominated by DevOps and CI/CD practices, code signing is an invaluable guardian of integrity and trust. Therefore, it is essential that software development organizations see code signing as a security imperative and not merely as a best practice. The AnyDesk breach presents an opportunity for organizations to reassess their code signing processes and invest in holistic solutions that simplify code signing for DevOps, support distributed development teams, and give security teams complete visibility and control of the code signing process.

AppViewX SIGN+ is a fast, reliable, and secure code signing solution built to protect the integrity of code, containers, firmware, and software. With a centralized and integrated approach, AppViewX SIGN+ is designed to simplify code signing for DevOps, enhance software supply chain security, and extend trust to end users.

To learn more about AppViewX SIGN+, visit our product page now or talk to one of our experts.

About the Author

Krupa Patil

Product Marketing Manager

A content creator focused on providing readers and prospective buyers with accurate, useful, and latest product information to help them make better informed decisions.

More From the Author →



Source link

Tags: AnyDeskAttentionbreachCallsCodeSecuritySigningURGENT
Previous Post

Sean Patrick Maloney’s OECD Role Amidst Crypto Advisory Background

Next Post

Exclusive: RW3 Ventures raises $60 million crypto VC fund with backing from Mubadala and Raptor Group

Related Posts

Maria Middelares Hospital autotransplants kidney with da Vinci SP via single incision
Automation

Maria Middelares Hospital autotransplants kidney with da Vinci SP via single incision

June 8, 2024
Embrace the Next Finance Leap
Automation

Embrace the Next Finance Leap

June 7, 2024
Keeping Your Home at a Relaxing Temperature in the Summer in Southeast US States
Automation

Keeping Your Home at a Relaxing Temperature in the Summer in Southeast US States

June 7, 2024
Starting Digital Transformation from the Edge
Automation

Starting Digital Transformation from the Edge

June 7, 2024
11 Tips for Living in Your Home During a Remodel
Automation

11 Tips for Living in Your Home During a Remodel

June 6, 2024
Microsoft CA to PKIaaS | 7 Reasons to Replace Your Microsoft CA
Automation

Microsoft CA to PKIaaS | 7 Reasons to Replace Your Microsoft CA

June 6, 2024
Next Post
Exclusive: RW3 Ventures raises $60 million crypto VC fund with backing from Mubadala and Raptor Group

Exclusive: RW3 Ventures raises $60 million crypto VC fund with backing from Mubadala and Raptor Group

A Simple Popup Accelerates Email List Growth

A Simple Popup Accelerates Email List Growth

Reflection Scroll Effect | Codrops

Reflection Scroll Effect | Codrops

Leave a Reply Cancel reply

Your email address will not be published. Required fields are marked *

  • Trending
  • Comments
  • Latest
Is C.AI Down? Here Is What To Do Now

Is C.AI Down? Here Is What To Do Now

January 10, 2024
Accenture creates a regulatory document authoring solution using AWS generative AI services

Accenture creates a regulatory document authoring solution using AWS generative AI services

February 6, 2024
Managing PDFs in Node.js with pdf-lib

Managing PDFs in Node.js with pdf-lib

November 16, 2023
23 Plagiarism Facts and Statistics to Analyze Latest Trends

23 Plagiarism Facts and Statistics to Analyze Latest Trends

June 4, 2024
Azul cloud service spots dead code in Java apps

Azul cloud service spots dead code in Java apps

October 7, 2023
The 15 Best Python Courses Online in 2024 [Free + Paid]

The 15 Best Python Courses Online in 2024 [Free + Paid]

April 13, 2024
Can You Guess What Percentage Of Their Wealth The Rich Keep In Cash?

Can You Guess What Percentage Of Their Wealth The Rich Keep In Cash?

June 10, 2024
AI Compared: Which Assistant Is the Best?

AI Compared: Which Assistant Is the Best?

June 10, 2024
How insurance companies can use synthetic data to fight bias

How insurance companies can use synthetic data to fight bias

June 10, 2024
5 SLA metrics you should be monitoring

5 SLA metrics you should be monitoring

June 10, 2024
From Low-Level to High-Level Tasks: Scaling Fine-Tuning with the ANDROIDCONTROL Dataset

From Low-Level to High-Level Tasks: Scaling Fine-Tuning with the ANDROIDCONTROL Dataset

June 10, 2024
UGRO Capital: Targeting to hit milestone of Rs 20,000 cr loan book in 8-10 quarters: Shachindra Nath

UGRO Capital: Targeting to hit milestone of Rs 20,000 cr loan book in 8-10 quarters: Shachindra Nath

June 10, 2024
Facebook Twitter LinkedIn Pinterest RSS
News PouroverAI

The latest news and updates about the AI Technology and Latest Tech Updates around the world... PouroverAI keeps you in the loop.

CATEGORIES

  • AI Technology
  • Automation
  • Blockchain
  • Business
  • Cloud & Programming
  • Data Science & ML
  • Digital Marketing
  • Front-Tech
  • Uncategorized

SITEMAP

  • Disclaimer
  • Privacy Policy
  • DMCA
  • Cookie Privacy Policy
  • Terms and Conditions
  • Contact us

Copyright © 2023 PouroverAI News.
PouroverAI News

No Result
View All Result
  • Home
  • AI Tech
  • Business
  • Blockchain
  • Data Science & ML
  • Cloud & Programming
  • Automation
  • Front-Tech
  • Marketing

Copyright © 2023 PouroverAI News.
PouroverAI News

Welcome Back!

Login to your account below

Forgotten Password? Sign Up

Create New Account!

Fill the forms bellow to register

All fields are required. Log In

Retrieve your password

Please enter your username or email address to reset your password.

Log In