The company is advising all users to reset their passwords asap.
Remote access tools are very useful when someone needs to have access to their device from a distance. However, they may cause a real security risk if that someone is a hacker with malicious intentions. Lately, security breaches have come one after the other. It looks like a busy and lucrative year for the hackers who have been targeting users in a variety of different ways. Not even a month has passed since the TeamViewer account hijacking and now another attack against a remote access platform has made the news. This time, GoToMyPC is the target.
The remote access service of GoToMyPC has been hit by a “very sophisticated password attack” as security experts describe it. There are not many details about the attack at the moment, as the investigations are still ongoing. The company, however, came up with a warning to its users advising them to monitor their accounts and change their passwords to prevent unauthorized access.
There is not much information available about where that password attack originated from, nor what the exact number of compromised accounts is at the moment. However, the simple fact that a remote access tool has been compromised is enough to raise serious concerns. Citrix is the company behind the GoToMyPC service, but it has not revealed any details about the attack. The company only came with an apology to their users: “We apologize for the frustration this issue is causing”.
GoToMyPC status page is updated with a publication, where the company issues the following statement:
Unfortunately, the GoToMYPC service has been targeted by a very sophisticated password attack. To protect you, the security team recommended that we reset all customer passwords immediately.
Effective immediately, you will be required to reset your GoToMYPC password before you can log in again.
To reset your password please use your regular GoToMYPC login link.
The company also gives useful recommendations for the users on how to create a strong password:
Recommendations for a strong password
• Don’t use a word from the dictionary
• Select strong passwords that can’t easily be guessed with 8 or more characters
• Make it Complex — Randomly add capital letters, punctuation or symbols
• Substitute numbers for letters that look similar (for example, substitute “0” for “o” or “3” for “E”.
To help improve overall security, users are also advised to consider enabling the two-factor authentication on their accounts.
Citrix has been rather discreet with their posts on social media regarding this issue. Here is what the company wrote as an update on Twitter:
If you are having issues logging into your account, please visit our service status page for instructions https://t.co/1MBVdkKNFM ^GD
— Citrix GoToMyPC (@GoToMyPC) June 18, 2016
With the increased regularity of hacking attacks and the recently leaked login credentials originating from several mega breaches on social platforms, our “How To Remove” team would strongly advise users to think about changing all of their passwords. Creating a new complex and strong password is an important step in minimizing the risk of your account being compromised.