TeamViewer, a remote access leader, reports that its corporate network was hacked by Russian spies

TeamViewer, a prominent provider of remote access tools for businesses, has confirmed an ongoing cyberattack on its corporate network. According to the company, the compromise has been attributed to government-backed hackers affiliated with Russian intelligence, known as APT29 (Midnight Blizzard).

In a statement released on Friday, TeamViewer disclosed that the attack appears to have originated from an initial intrusion on June 26, which exploited credentials associated with a standard employee account in their corporate IT environment. The company stated that the cyberattack was contained within its corporate network and emphasized that its internal network and customer systems remain separate. TeamViewer further assured that there is no evidence suggesting the threat actors gained access to its product environment or customer data.

Martina Dier, a spokesperson for TeamViewer, declined to respond to inquiries from TechCrunch regarding the company’s technical capabilities, such as the ability to determine if any data was accessed or exfiltrated from their network.

TeamViewer serves a wide range of corporate customers, including major entities like DHL and Coca-Cola, enabling remote access to devices and computers globally. The company boasts over 600,000 paying customers and facilitates remote access to more than 2.5 billion devices worldwide. However, TeamViewer’s widespread use also makes it a target for malicious actors who exploit its capabilities for remote deployment of malware on targeted devices.