"AnyDesk Incident: Customer Credentials Leaked and Published for Sale on the Dark Web"
Resecurity identified malicious actors selling a large number of AnyDesk customer credentials on the dark web. This credential leak is suspected to be the result of infostealer infections. The leaked information could be of significant value to both Initial Access Brokers (IABs) and ransomware groups familiar with AnyDesk, which is one of the tools often used after successful network intrusions. Dark web actors have shown much interest in AnyDesk customer credentials as the ability to get them in bulk is highly attractive to actors engaged in spam, online banking theft, Business Email Compromise (BEC), scam, and Account Takeover (ATO) activities. This article continues to discuss the AnyDesk credentials leak.
Submitted by grigby1
Submitted by grigby1 CPVI
on