Anydesk Sophos 【2026 Update】

Utilize AnyDesk’s Access Control List feature to allow connections only from specific corporate IP addresses or specific AnyDesk IDs.

If AnyDesk cannot find a network connection, the Sophos Firewall (XG/SFOS) might be blocking the tunnel.

Use AnyDesk's custom client generator to create a pre-configured, hardened installer, and distribute it via active directory. anydesk sophos

Sophos may quarantine AnyDesk due to its remote access nature (false positive).

Remote monitoring and management (RMM) tools like AnyDesk are inherently powerful, granting full system control over the internet. While legitimate IT departments use them for troubleshooting, cybercriminals leverage them for unauthorized access, data exfiltration, and ransomware deployment. Utilize AnyDesk’s Access Control List feature to allow

If you use Sophos Firewall (XG/XGS), restrict AnyDesk traffic to known corporate IPs. Block default AnyDesk ports (TCP port 80, 443, and 6568) for unauthorized subnets to prevent rogue installations from connecting to the AnyDesk network. Hardening AnyDesk Under Sophos Supervision

Should we focus more on or Endpoint Protection (Intercept X) ? Sophos may quarantine AnyDesk due to its remote

Instead of blocking “Remote Control” category:

Are you targeting or general business readers ?

Never rely solely on passwords for unattended access. Enable MFA within AnyDesk to stop credential-stuffing attacks.

*.anydesk.com *.anydesk.eu *.anydesk.us *.relay.anydesk.com