Remote access giant TeamViewer reports that Russian spies have hacked its corporate network
TeamViewer, the company known for its widely used remote access tools, has confirmed an ongoing cyberattack on its corporate network. The company attributed the breach to government-backed hackers working for Russian intelligence, specifically APT29 (also known as Midnight Blizzard).
The Germany-based company reported that the initial intrusion occurred on June 26, using the credentials of a standard employee account within its corporate IT environment. TeamViewer stated that the cyberattack was contained to its corporate network and emphasized that its internal network is kept separate from customer systems. They have found no evidence that the threat actor accessed their product environment or customer data.
Despite these assurances, TeamViewer spokesperson Martina Dier declined to answer several questions from TechCrunch, including whether the company has the technical means, such as logs, to determine what, if any, data was accessed or exfiltrated from its network.
TeamViewer, a popular provider of remote access tools, allows corporate customers like DHL and Coca-Cola to access devices and computers over the internet. The company claims over 600,000 paying customers and facilitates remote access to more than 2.5 billion devices worldwide. However, it is also known that malicious hackers can abuse TeamViewer for remotely planting malware on victim devices.