Alex Stamos on Nostr: If AnyDesk wanted to help defenders protect against possible abuse of their stolen ...
If AnyDesk wanted to help defenders protect against possible abuse of their stolen certificate, they could:
1) Publish the details of their compromised certificate, so enterprises can search across their fleet for installs.
2) Publish a list of known good hashes of AnyDesk releases. If an attacker creates a malicious anydesk.exe only the victim might see it, so it's important to be able to exclude real releases while hunting.
1) Publish the details of their compromised certificate, so enterprises can search across their fleet for installs.
2) Publish a list of known good hashes of AnyDesk releases. If an attacker creates a malicious anydesk.exe only the victim might see it, so it's important to be able to exclude real releases while hunting.