Security News > 2024 > February > Corporate users getting tricked into downloading AnyDesk

Corporate users getting tricked into downloading AnyDesk
2024-02-14 09:08

Hackers are leveraging the AnyDesk remote desktop application in a phishing campaign targeting employees, Malwarebytes warns.

In a phishing campaign recently discovered by Malwarebytes researchers, attackers targeted potential victims via email or SMS, personalized to match their roles within the organization.

Instead of phishing for information directly from the victims, the attackers aimed to make them download remote monitoring and management software - in this case, and outdated AnyDesk executable.

To make them do that, the victims were directed to newly registered websites mimicking various financial institutions and asked to download a "Live chat application".

Phishing campaigns leading victims to download RMMs are not new and have been seen targeting even government agencies.

AnyDesk has also recently suffered a data breach that compromised its production systems.


News URL

https://www.helpnetsecurity.com/2024/02/14/anydesk-phishing/

Related vendor

VENDOR LAST 12M #/PRODUCTS LOW MEDIUM HIGH CRITICAL TOTAL VULNS
Anydesk 1 0 1 7 2 10