Teamviewer hacked

BRRABill

@MattSpeller said

At a minimum all I ask is to send out a notice to all customers of EXACTLY what is happening and why. Remediation steps would be a nice addition.

I think they basically did that. They said they were not hacked, it was weak passwords (which they later said was too strongly worded), and that people should take advantage of their other security things they already had in place.

It seems now they are FORCING people to use these security measures. So, much better for security, but it will probably drive away people who don't want to be bothered.

BRRABill

@DustinB3403 said i

"No hack occurred, nothing to see here"

Has anyone yet proved there WAS a hack?

david.wiese

I have had my work Surface Pro 3 taken over Twice while teamviewer was running. Changed all Passwords, enabled 2FA and it still happened again. Contacted Teamviewer Support and what did they say? They said it must have been my fault and their software had no security holes. My Co-workers computer was also taken over, however he didn't have 2FA enabled. Nothing was compromised on our systems but we are now in the search for a new provider. Teamviewer can no longer be trusted! Their support is crap. They play, let's blame the users and not actually look at our software.

edit: I should add that I had a 18 character password with letters, numbers, caps as well as 2FA enabled plus the normal work security settings. Teamviewer was the hole, not our system.

DustinB3403

@BRRABill said in Teamviewer hacked:

@DustinB3403 said i

"No hack occurred, nothing to see here"

Has anyone yet proved there WAS a hack?

I don't believe so, but something clearly has occurred. Or people are just out to steal money / buy crap and then claim it was theft due to TeamViewer and dispute the charges with their banks.

JaredBusch

@david.wiese said in Teamviewer hacked:

I have had my work Surface Pro 3 taken over Twice while teamviewer was running. Changed all Passwords, enabled 2FA and it still happened again. Contacted Teamviewer Support and what did they say? They said it must have been my fault and their software had no security holes. My Co-workers computer was also taken over, however he didn't have 2FA enabled. Nothing was compromised on our systems but we are now in the search for a new provider. Teamviewer can no longer be trusted! Their support is crap. They play, let's blame the users and not actually look at our software.

edit: I should add that I had a 18 character password with letters, numbers, caps as well as 2FA enabled plus the normal work security settings. Teamviewer was the hole, not our system.

While, I personally believe you, and believe that shit happened to TeamViewer, there is no proof. The problem here is that this is only your claim.

No one has been able to provide 100% documented proof.

BRRABill

@david.wiese

That sucks, sorry to hear that.

Did you reach out to them recently? They have been looking for people who had 2FA on and got hacked.

Also, do you know if you still had the random password on? I know that's something I did, and have recently turned off.

david.wiese

@BRRABill said in Teamviewer hacked:

@david.wiese

That sucks, sorry to hear that.

Did you reach out to them recently? They have been looking for people who had 2FA on and got hacked.

Also, do you know if you still had the random password on? I know that's something I did, and have recently turned off.

No I haven't reached out to them because the last time I did, they essentially blew me off and told me it was my fault. I contacted them 4 months ago when this initially happened. And yes I have the random password turned off.

david.wiese

@JaredBusch said in Teamviewer hacked:

@david.wiese said in Teamviewer hacked:

I have had my work Surface Pro 3 taken over Twice while teamviewer was running. Changed all Passwords, enabled 2FA and it still happened again. Contacted Teamviewer Support and what did they say? They said it must have been my fault and their software had no security holes. My Co-workers computer was also taken over, however he didn't have 2FA enabled. Nothing was compromised on our systems but we are now in the search for a new provider. Teamviewer can no longer be trusted! Their support is crap. They play, let's blame the users and not actually look at our software.

edit: I should add that I had a 18 character password with letters, numbers, caps as well as 2FA enabled plus the normal work security settings. Teamviewer was the hole, not our system.

While, I personally believe you, and believe that shit happened to TeamViewer, there is no proof. The problem here is that this is only your claim.

No one has been able to provide 100% documented proof.

I wonder if the logs would tell anything?

Deleted74295

I know of one UK MSP who has removed Teamviewer from most of their devices as a result of this, turned security up to 11. It is only left live on 1 server per client site which needs a log in prompt anyway and all security options in TV are enabled.

Soon they will be on to another tool I'm guessing.

Now if TV have not been hacked fine but their PR handling of this is costing them customers, period.

BRRABill

@david.wiese said

I wonder if the logs would tell anything?

They should.

It would show all the incoming connections. It should also be in your account section on their website, it should list all connections.

BRRABill

On a side note, how does one hack 2FA?

Or does it depend on the implementation?

For example, to log into TV, I use Google Authenticator, and I put that code into the TV website. So, where would the hack be? Hacking the reception portion of TV?

wirestyle22

Innocent until proven guilty I say. I'm all for burning the witch if we know shes a witch but the lack of facts is just as concerning to me as the potential hacking.

-So, logically--

• If she weighs the same as a duck...
• she's made of wood.
• And therefore?
• A witch!

BRRABill

@wirestyle22 said in Teamviewer hacked:

Innocent until proven guilty I say. I'm all for burning the witch if we know shes a witch but the lack of facts is just as concerning to me as the potential hacking.

-So, logically--

• If she weighs the same as a duck...
• she's made of wood.
• And therefore?
• A witch!

I don't get what you are saying here...

BRRABill

@BRRABill said

On a side note, how does one hack 2FA?

Or does it depend on the implementation?

For example, to log into TV, I use Google Authenticator, and I put that code into the TV website. So, where would the hack be? Hacking the reception portion of TV?

Or is the thinking that the software ITSELF is hacked, and hackers have a backdoor of sorts that bypasses all this? Which also wouldn't make sense since they are showing up in people's accounts and logs.

Dashrender

@david.wiese said in Teamviewer hacked:

I have had my work Surface Pro 3 taken over Twice while teamviewer was running. Changed all Passwords, enabled 2FA and it still happened again. Contacted Teamviewer Support and what did they say? They said it must have been my fault and their software had no security holes. My Co-workers computer was also taken over, however he didn't have 2FA enabled. Nothing was compromised on our systems but we are now in the search for a new provider. Teamviewer can no longer be trusted! Their support is crap. They play, let's blame the users and not actually look at our software.

edit: I should add that I had a 18 character password with letters, numbers, caps as well as 2FA enabled plus the normal work security settings. Teamviewer was the hole, not our system.

How do you know it was team viewer the second time? The hackers could have installed some other software that gave them control.

wirestyle22

@BRRABill said in Teamviewer hacked:

@wirestyle22 said in Teamviewer hacked:

Innocent until proven guilty I say. I'm all for burning the witch if we know shes a witch but the lack of facts is just as concerning to me as the potential hacking.

-So, logically--

• If she weighs the same as a duck...
• she's made of wood.
• And therefore?
• A witch!

I don't get what you are saying here...

It's a monty python reference

MattSpeller

At this point it really does not matter who's fault it is, the fact that people are getting pwned via TV means there is a huge problem.

Granted, that problem is really TV's even if it's not their fault. Which sucks for them significantly.

Unfortunately the easiest and fastest solution for many people will be switching to another service.

wirestyle22

@MattSpeller I don't think we can say it's a fact yet though. There is no proof yet. It's likely that something happened for sure but we can't say what.

MattSpeller

@wirestyle22 said in Teamviewer hacked:

@MattSpeller I don't think we can say it's a fact yet though. There is no proof yet.

You're 100% correct but in what way does that matter at all?

Certainly didn't for me, I uninstalled it from both my machines and my parents machine within an hour of Nic posting it.

wirestyle22

@MattSpeller said in Teamviewer hacked:

@wirestyle22 said in Teamviewer hacked:

@MattSpeller I don't think we can say it's a fact yet though. There is no proof yet.

You're 100% correct but in what way does that matter at all?

Certainly didn't for me, I uninstalled it from both my machines and my parents machine within an hour of Nic posting it.

Well yeah, be safe. That's a just in-case measure. I'm talking about who is really at fault here though