TeamViewer Confirms Cyberattack by Notorious APT Group

TeamViewer, a remote control tool trusted by millions of users globally, has disclosed a significant cyberattack. A sophisticated hacker group identified as APT29, or “Midnight Blizzard,” successfully infiltrated TeamViewer’s systems through unknown methods. However, initial evidence suggests that neither TeamViewer products nor user data have been compromised.

The security breach was detected on June 26, 2024, when TeamViewer’s security team noticed unusual activity within their internal IT environment. Promptly, a specialized response team was activated, working in tandem with leading cybersecurity experts to investigate and mitigate the threat.

APT29, known for its previous high-profile attacks on Microsoft, including the theft of source code, is the group behind this breach. Their reputation for targeting major corporations and accessing sensitive data underscores the severity of this incident.

In a detailed security bulletin, TeamViewer emphasized that their internal corporate IT infrastructure is entirely separate from the product environment. They reassured users that there is no current evidence indicating that the product environment or customer data has been affected. The ongoing investigations remain focused on ensuring the robustness and integrity of their systems.

“TeamViewer’s internal corporate IT environment is completely independent from the product environment. There is no evidence to suggest that the product environment or customer data is affected. Investigations are ongoing and our primary focus remains to ensure the integrity of our systems,” TeamViewer stated in a post to its Trust Center.

At present, it is unclear whether the TeamViewer remote control tool itself has any vulnerabilities. Users are advised to use strong connection passwords and consider changing them to avoid potential security issues.