TeamViewer Admits Breach from 2016TeamViewer Admits Breach from 2016
The company says it stopped the attack launched by a Chinese hacking group.
May 21, 2019
TeamViewer, a German software company specializing in remote access and desktop sharing software, announced that it suffered an attack, presumably from a Chinese hacking group, in 2016. According to the company, the attack was discovered and stopped at the time, with no evidence of damage or compromise found.
The attackers used Winnti, a backdoor Trojan known to have been developed and used by groups located in China. Now used by multiple Chinese hacking groups, the software is considered a reliable indicator that the attack originated within China.
Prior to the Winnti attack, TeamViewer saw a campaign of attacks against user accounts among its customers. The German publication Der Spiegel reported that the Winnti campaign was active inside TeamViewer since 2014, a claim that, in an email message to Dark Reading, TeamViewer said was possible, though they said that the attack didn’t become active until 2016, at which point they stopped the activity before any damage occurred.
Read more here.
Join Dark Reading LIVE for two cybersecurity summits at Interop 2019. Learn from the industry's most knowledgeable IT security experts. Check out the Interop agenda here.
About the Author(s)
You May Also Like
Hacking Your Digital Identity: How Cybercriminals Can and Will Get Around Your Authentication MethodsOct 26, 2023
Modern Supply Chain Security: Integrated, Interconnected, and Context-DrivenNov 06, 2023
How to Combat the Latest Cloud Security ThreatsNov 06, 2023
Reducing Cyber Risk in Enterprise Email Systems: It's Not Just Spam and PhishingNov 01, 2023
SecOps & DevSecOps in the CloudNov 06, 2023