Teamviewer Possibly Hacked


  1. Posts : 16,325
    W10Prox64
       #1

    Teamviewer Possibly Hacked


    TeamViewer denies hack after PCs hijacked, PayPal accounts drained


    Updated TeamViewer users say their computers were hijacked and bank accounts emptied all while the software company's systems mysteriously fell offline. TeamViewer denies it has been hacked.

    In the past 24 hours, we've seen a spike in complaints from people who say their PCs, Macs and servers were taken over via the widely used remote-control tool on their machines. Even users with strong passwords and two-factor authentication enabled on their TeamViewer accounts say they were hit.
    It appears miscreants gained control of victims' TeamViewer web accounts, and used those to connect into computers, where they seized web browsers to empty PayPal accounts, access webmail, and order stuff from Amazon and eBay.
    Read more here:
    TeamViewer denies hack after PCs hijacked, PayPal accounts drained • The Register

    Time to use the Whitelist feature and 2-factor authentication.


    EDIT: Update
    TeamViewer Launches New Security Tools After This Weeks Mysterious Events
    .
    Last edited by simrick; 03 Jun 2016 at 20:43.
      My Computer


  2. Posts : 14,901
    Windows 10 Pro
       #2

    Unfortunately 2-factor authentication doesn't help, users have reported that they have been a victim of this too with 2-factor enabled.

    My source is the best Dutch tech site called Tweakers:
    Gebruikers klagen over diefstal via TeamViewer-software - IT Pro - Nieuws - Tweakers
    Ook gebruikers met tweetrapsauthenticatie en degelijke wachtwoorden voor hun TeamViewer-account zijn slachtoffer geworden.
    Translation:
    Even users with 2-factor authentication and strong passwords for their TeamViewer-account are victim.
      My Computers


  3. Posts : 16,325
    W10Prox64
    Thread Starter
       #3

    axe0 said:
    Unfortunately 2-factor authentication doesn't help, users have reported that they have been a victim of this too with 2-factor enabled.

    My source is the best Dutch tech site called Tweakers:
    Gebruikers klagen over diefstal via TeamViewer-software - IT Pro - Nieuws - Tweakers

    Translation:
    Even users with 2-factor authentication and strong passwords for their TeamViewer-account are victim.

    Not good. Wonder how they get past that?
      My Computer


  4. Posts : 14,901
    Windows 10 Pro
       #4

    It looks like TeamViewer has made changes, they're introducing 2 things for better security. This has come public in an open letter to customers.

    1. Trusted Devices: this function makes that the user must mark a new device as trusted device when someone wants to login for the first time. The user can mark a device as trusted by clicking on an automatic generated link in an e-mail.

    2. Data integrity: this functions looks for unusual behavior. Unusual behavior can occur with for example login attempts from unknown IP's. If the system detects any unusual behavior then the password will be resetted and the user will receive instructions for how to reconfigure their passwords.


    TeamViewer says that the cause of the problem is from databreaches of the hacks from LinkedIn, Tumblr & MySpace wherein credentials have been stolen.


    Source is Tweakers.net: TeamViewer voegt twee nieuwe beveiligingsfuncties toe na klachten gebruikers - Computer - Nieuws - Tweakers
      My Computers


  5. Posts : 16,325
    W10Prox64
    Thread Starter
       #5

    axe0 said:
    It looks like TeamViewer has made changes, they're introducing 2 things for better security. This has come public in an open letter to customers.

    1. Trusted Devices: this function makes that the user must mark a new device as trusted device when someone wants to login for the first time. The user can mark a device as trusted by clicking on an automatic generated link in an e-mail.

    2. Data integrity: this functions looks for unusual behavior. Unusual behavior can occur with for example login attempts from unknown IP's. If the system detects any unusual behavior then the password will be resetted and the user will receive instructions for how to reconfigure their passwords.


    TeamViewer says that the cause of the problem is from databreaches of the hacks from LinkedIn, Tumblr & MySpace wherein credentials have been stolen.


    Source is Tweakers.net: TeamViewer voegt twee nieuwe beveiligingsfuncties toe na klachten gebruikers - Computer - Nieuws - Tweakers
    Thanks axe0. I had added a link for that to the first post, but not described it.

    Interestingly enough, I think that the data breaches coupled with re-use of passwords is probably the real issue, (usually is), and NOT Teamviewer. Still, it's good to see these additional security measures in place. It's unfortunate for them, that now they will have to "clean the tarnish" off from this episode.
      My Computer


  6. Posts : 5,478
    2004
       #6

    axe0 said:
    Unusual behavior can occur with for example login attempts from unknown IP's.
    I find that restriction particularly irksome (although I can't think of a better solution). I would have thought that someone who uses TeamViewer would be exactly the type of person who travels a lot and logs in from different IP's as you'd hardly use TeamViewer to connect from your living room PC to the one in your garage.

    It isn't just them of course. I got blocked by one of my gmail accounts recently for forgetting my password in the wrong country. They told me to go home and try logging on from a known IP address again bless them.
      My Computer


  7. Posts : 16,325
    W10Prox64
    Thread Starter
       #7

    lx07 said:
    I find that restriction particularly irksome (although I can't think of a better solution). I would have thought that someone who uses TeamViewer would be exactly the type of person who travels a lot and logs in from different IP's as you'd hardly use TeamViewer to connect from your living room PC to the one in your garage.

    It isn't just them of course. I got blocked by one of my gmail accounts recently for forgetting my password in the wrong country. They told me to go home and try logging on from a known IP address again bless them.
    You're such a trouble-maker!
      My Computer


  8. Posts : 5,478
    2004
       #8

    simrick said:
    You're such a trouble-maker!
    Oh I really am not and it is absolutely true story (although it was my wifes email not mine if I must be 100% accurate and it was my fault I didn't remember the password as I wasn't really listening).

    I felt like they were joking with me though. Go to a different country to log on? Madness.

    Someone has joined today with almost exactly your name by the way. Confused me for a second. View Profile: SamRick - Windows 10 Forums
      My Computer


  9. Posts : 16,325
    W10Prox64
    Thread Starter
       #9

    lx07 said:
    Oh I really am not and it is absolutely true story (although it was my wifes email not mine if I must be 100% accurate and it was my fault I didn't remember the password as I wasn't really listening).

    I felt like they were joking with me though. Go to a different country to log on? Madness.

    Someone has joined today with almost exactly your name by the way. Confused me for a second. View Profile: SamRick - Windows 10 Forums
    Uh-oh. I hope he doesn't get me in trouble!
      My Computer


  10. Posts : 13,896
    Win10 Version 22H2 Pro and Home, Win11 Pro and Home
       #10

    lx07 said:
    Oh I really am not and it is absolutely true story (although it was my wifes email not mine if I must be 100% accurate and it was my fault I didn't remember the password as I wasn't really listening).

    I felt like they were joking with me though. Go to a different country to log on? Madness.

    Someone has joined today with almost exactly your name by the way. Confused me for a second. View Profile: SamRick - Windows 10 Forums
    Not an impossible situation, someone has/had used the last parts of my first and last name to create a User. No way to find out. He/She must have had access to the site's database to learn the information.
      My Computers


 

  Related Discussions
Our Sites
Site Links
About Us
Windows 10 Forums is an independent web site and has not been authorized, sponsored, or otherwise approved by Microsoft Corporation. "Windows 10" and related materials are trademarks of Microsoft Corp.

© Designer Media Ltd
All times are GMT -5. The time now is 10:29.
Find Us




Windows 10 Forums