Tag Archive for: revokes

Remote access giant AnyDesk resets passwords and revokes certificates after hack

/in


Remote desktop software provider AnyDesk confirmed late Friday that a cyberattack allowed hackers to gain access to the company’s production systems, putting the company in lockdown for almost a week.

AnyDesk’s software is used by millions of IT professionals to quickly and remotely connect to their clients’ devices, often to help with technical issues. On its website, AnyDesk claims to have more than 170,000 customers, including Comcast, LG, Samsung and Thales.

The software is also a popular tool among threat actors and ransomware gangs, which have long used the software for gaining and maintaining access to a victim’s computer and data. U.S. cybersecurity agency CISA said in January that hackers had compromised federal agencies using legitimate remote desktop software, including AnyDesk.

News of the suspected breach began to spread last Monday when AnyDesk announced it had swapped its code-signing certificates, which companies use to prevent hackers from tampering with their code. Following a days-long outage, AnyDesk confirmed in a statement late on Friday that the company had “found evidence of compromised production systems.”

AnyDesk said that as part of its incident response, the company had revoked all security-related certificates, remediated or replaced systems where necessary and invalidated all passwords to AnyDesk’s customer web portal.

“We will be revoking the previous code signing certificate for our binaries shortly and have already started replacing it with a new one,” the company added Friday.

AnyDesk said the incident is not related to ransomware but did not disclose the specific nature of the cyberattack.

AnyDesk spokesperson Matthew Caldwell did not respond to an email from TechCrunch. CrowdStrike, which is working with AnyDesk to remediate the cyberattack, declined to answer TechCrunch’s questions when reached Monday.

AnyDesk did not respond to questions asking if any customer data was accessed, though the company said in its statement that there is “no evidence that any end-user systems have been affected.”

“We can confirm that the situation is under control and it is safe to use AnyDesk,” AnyDesk said. “Please ensure that you are using the…

Source…

Biden Revokes and Replaces Trump Order That Banned TikTok

/in


TikTok’s woes subsided with Mr. Trump’s election defeat. Though the company is still under scrutiny with the Biden administration’s new executive order, analysts say the dramatic ups and downs for the company will significantly dwindle.

James Lewis, a senior vice president of the Center for Strategic and International Studies, said the Biden administration had shown no easing of the government’s strong stance against China. But the new order lays out much more precise criteria for weighing risks posed by TikTok and other companies owned by foreign adversaries like China.

“They are taking the same direction as the Trump administration but in some ways tougher, in a more orderly fashion and implemented in a good way,” Mr. Lewis said. He added that Mr. Biden’s order was stronger than the Trump-era directive because “it’s coherent, not random.”

Under the new system outlined in Mr. Biden’s order, Commerce Secretary Gina Raimondo would be empowered to “use a criteria-based decision framework and rigorous, evidence-based analysis” to examine software applications designed, manufactured or developed by a “foreign adversary,” including China, according to a memo circulated by Commerce Department officials and obtained by The New York Times.

“The Biden administration is committed to promoting an open, interoperable, reliable and secure internet,” the memo said. “Certain countries,” including China, “do not share these democratic values.”

On Wednesday, administration officials would not go into specifics about the future of TikTok’s availability to American users or say whether the U.S. government would seek to compel ByteDance, which owns the app, to transfer American user data to a company based in the United States. Amid a number of successful legal challenges waged by ByteDance, a deal to transfer the data to Oracle fell through this year shortly after Mr. Biden took office.

Administration officials said a review of TikTok by the Committee on Foreign Investment in the United States, the body that considers the national security implications of foreign investments in U.S. companies, was still continuing and separate…

Source…

Brighton & Hove revokes Uber’s licence due to data breach concerns

/in

  1. Brighton & Hove revokes Uber’s licence due to data breach concerns  The INQUIRER

  2. Uber loses license to operate in UK’s Brighton over data breach concerns  Daily Sabah
  3. Now Uber is banned in a FOURTH UK city: Brighton & Hove Council refuses the taxi app firm a licence saying it is not …  Daily Mail

    4. Full coverage

data breach – read more

A world of hurt after McAfee mistakenly revokes key for signing Mac apps

/in

Travis Nep Smith

A McAfee administrator accidentally revoked the digital key used to certify desktop applications that run on Apple’s OS X platform, creating headaches for customers who want to install or upgrade Mac antivirus products.

A certificate revocation list [CRL] hosted by Apple Worldwide developer servers lists the reason for the cancellation as a “key compromise,” but McAfee officials said they never lost control of the sensitive certificate which is used to prove applications are legitimate releases. The revocation date shows as February 6, meaning that for seven days now, customers have had no means to validate McAfee applications they want to install on Macs.

“We were told that as a workaround, we should just allow untrusted certificates until they figure it out,” an IT administrator at a large organization, who asked that he not be identified, told Ars. “They’re telling us to trust untrusted certs, and that definitely puts us at risk.”

Read 6 remaining paragraphs | Comments


Ars Technica » Technology Lab