Skip to content

Elevating Cyber Defence: Impact of AnyDesk Data Breach


In the ever-evolving landscape of cybersecurity threats, recent events have underscored the critical importance of robust measures to safeguard sensitive data. The AnyDesk incident serves as an important reminder of the potential risks posed by cyberattacks and the need for proactive mitigation strategies.

As our cyber security analysts at NTT Security have preciously warned about, we have observed that attackers are increasingly turning to legitimate software to avoid detection. In February 2024, AnyDesk, a remote desktop program, disclosed a cyberattack that compromised customers credentials, the credentials subsequently leaked, and offered for sale on the Dark Web. The aftermath of this incident has raised significant concerns regarding the security of customer data and the potential for malicious exploitation. 

The compromised credentials were listed for sale on the Dark Web, and pose as a substantial threat to both individual users and enterprises. With cybercriminals leveraging this information for various criminal activities, including phishing campaigns, the stakes are higher than ever for maintaining robust cybersecurity practices. 

5 key recommendations from our cyber security analysts to consider 

1) Password management. Avoid reusing passwords across multiple platforms to prevent further exposure in case of future breaches. 

2) Multi-Factor Authentication. Interestingly, the majority of the accounts that are listed on the dark web doesn’t have multi-factor Authentication. Hence, enabling multi-factor can reduce the risk that your account being sold on the dark web. Enable a multi-factor authentication wherever possible, to add an extra layer of security to your accounts. It mitigates the risk of unauthorized access. 

3) Stay informed and cautious. Remain cautious against potential phishing attempts and other form of social engineering tactics. Educate yourself and your coworkers on recognizing suspicious activities to precent potential security breaches. 

4) Continuous monitoring. Regularly monitor your accounts for any unauthorized changes, such as password resets or unusual login attempts. Promptly investigate and address any suspicious activities to prevent potential security breaches. Reach out to our cyber security analysts who are specialised in monitoring and detecting. 

5) Implementing Software Restriction Policies (SRP) to restrict the installation of AnyDesk can significantly reduce the risk of threat actors incorporating AnyDesk into their malicious toolkits. This measure becomes crucial given this incident, where AnyDesk accounts were illicitly obtained and sold on the dark web, potentially through the use of Infostealers installed on end-user systems. By preventing unauthorized installation of AnyDesk, companies can effectively thwart attempts by threat actors to exploit the software for unauthorized access or malicious activities. 

Are you unsure if your business is safe and protected from cybercriminals? Let’s talk. 

By taking proactive measures and remaining vigilant, we can collectively defend against cyber threats and safeguard sensitive data from exploitation. Let’s prioritize cybersecurity and work together to ensure a safer digital environment for all. Fill in the form and we’ll contact you.