Teamviewer hacked

Deleted74295

I know of one UK MSP who has removed Teamviewer from most of their devices as a result of this, turned security up to 11. It is only left live on 1 server per client site which needs a log in prompt anyway and all security options in TV are enabled.

Soon they will be on to another tool I'm guessing.

Now if TV have not been hacked fine but their PR handling of this is costing them customers, period.

BRRABill

@david.wiese said

I wonder if the logs would tell anything?

They should.

It would show all the incoming connections. It should also be in your account section on their website, it should list all connections.

BRRABill

On a side note, how does one hack 2FA?

Or does it depend on the implementation?

For example, to log into TV, I use Google Authenticator, and I put that code into the TV website. So, where would the hack be? Hacking the reception portion of TV?

wirestyle22

Innocent until proven guilty I say. I'm all for burning the witch if we know shes a witch but the lack of facts is just as concerning to me as the potential hacking.

-So, logically--

• If she weighs the same as a duck...
• she's made of wood.
• And therefore?
• A witch!

BRRABill

@wirestyle22 said in Teamviewer hacked:

Innocent until proven guilty I say. I'm all for burning the witch if we know shes a witch but the lack of facts is just as concerning to me as the potential hacking.

-So, logically--

• If she weighs the same as a duck...
• she's made of wood.
• And therefore?
• A witch!

I don't get what you are saying here...

BRRABill

@BRRABill said

On a side note, how does one hack 2FA?

Or does it depend on the implementation?

For example, to log into TV, I use Google Authenticator, and I put that code into the TV website. So, where would the hack be? Hacking the reception portion of TV?

Or is the thinking that the software ITSELF is hacked, and hackers have a backdoor of sorts that bypasses all this? Which also wouldn't make sense since they are showing up in people's accounts and logs.

Dashrender

@david.wiese said in Teamviewer hacked:

I have had my work Surface Pro 3 taken over Twice while teamviewer was running. Changed all Passwords, enabled 2FA and it still happened again. Contacted Teamviewer Support and what did they say? They said it must have been my fault and their software had no security holes. My Co-workers computer was also taken over, however he didn't have 2FA enabled. Nothing was compromised on our systems but we are now in the search for a new provider. Teamviewer can no longer be trusted! Their support is crap. They play, let's blame the users and not actually look at our software.

edit: I should add that I had a 18 character password with letters, numbers, caps as well as 2FA enabled plus the normal work security settings. Teamviewer was the hole, not our system.

How do you know it was team viewer the second time? The hackers could have installed some other software that gave them control.

wirestyle22

@BRRABill said in Teamviewer hacked:

@wirestyle22 said in Teamviewer hacked:

Innocent until proven guilty I say. I'm all for burning the witch if we know shes a witch but the lack of facts is just as concerning to me as the potential hacking.

-So, logically--

• If she weighs the same as a duck...
• she's made of wood.
• And therefore?
• A witch!

I don't get what you are saying here...

It's a monty python reference

MattSpeller

At this point it really does not matter who's fault it is, the fact that people are getting pwned via TV means there is a huge problem.

Granted, that problem is really TV's even if it's not their fault. Which sucks for them significantly.

Unfortunately the easiest and fastest solution for many people will be switching to another service.

wirestyle22

@MattSpeller I don't think we can say it's a fact yet though. There is no proof yet. It's likely that something happened for sure but we can't say what.

MattSpeller

@wirestyle22 said in Teamviewer hacked:

@MattSpeller I don't think we can say it's a fact yet though. There is no proof yet.

You're 100% correct but in what way does that matter at all?

Certainly didn't for me, I uninstalled it from both my machines and my parents machine within an hour of Nic posting it.

wirestyle22

@MattSpeller said in Teamviewer hacked:

@wirestyle22 said in Teamviewer hacked:

@MattSpeller I don't think we can say it's a fact yet though. There is no proof yet.

You're 100% correct but in what way does that matter at all?

Certainly didn't for me, I uninstalled it from both my machines and my parents machine within an hour of Nic posting it.

Well yeah, be safe. That's a just in-case measure. I'm talking about who is really at fault here though

MattSpeller

@wirestyle22 said in Teamviewer hacked:

@MattSpeller said in Teamviewer hacked:

@wirestyle22 said in Teamviewer hacked:

@MattSpeller I don't think we can say it's a fact yet though. There is no proof yet.

You're 100% correct but in what way does that matter at all?

Certainly didn't for me, I uninstalled it from both my machines and my parents machine within an hour of Nic posting it.

Well yeah, be safe. That's a just in-case measure. I'm talking about who is really at fault here though

TeamViewer - it might not even be their fault, but it's still their fault. It sucks, but that's life.

Edit: for clarity, points against them

• poor communication
• its ultimately their software
• could have put in stronger password requirements
• etc

david.wiese

@Dashrender said in Teamviewer hacked:

@david.wiese said in Teamviewer hacked:

I have had my work Surface Pro 3 taken over Twice while teamviewer was running. Changed all Passwords, enabled 2FA and it still happened again. Contacted Teamviewer Support and what did they say? They said it must have been my fault and their software had no security holes. My Co-workers computer was also taken over, however he didn't have 2FA enabled. Nothing was compromised on our systems but we are now in the search for a new provider. Teamviewer can no longer be trusted! Their support is crap. They play, let's blame the users and not actually look at our software.

edit: I should add that I had a 18 character password with letters, numbers, caps as well as 2FA enabled plus the normal work security settings. Teamviewer was the hole, not our system.

How do you know it was team viewer the second time? The hackers could have installed some other software that gave them control.

I wiped my machine and started from scratch.

Dashrender

@david.wiese said in Teamviewer hacked:

@Dashrender said in Teamviewer hacked:

@david.wiese said in Teamviewer hacked:

I have had my work Surface Pro 3 taken over Twice while teamviewer was running. Changed all Passwords, enabled 2FA and it still happened again. Contacted Teamviewer Support and what did they say? They said it must have been my fault and their software had no security holes. My Co-workers computer was also taken over, however he didn't have 2FA enabled. Nothing was compromised on our systems but we are now in the search for a new provider. Teamviewer can no longer be trusted! Their support is crap. They play, let's blame the users and not actually look at our software.

edit: I should add that I had a 18 character password with letters, numbers, caps as well as 2FA enabled plus the normal work security settings. Teamviewer was the hole, not our system.

How do you know it was team viewer the second time? The hackers could have installed some other software that gave them control.

I wiped my machine and started from scratch.

huh - well, in that case, I think TV has some 'splaning' to do!

wirestyle22

@MattSpeller said in Teamviewer hacked:

@wirestyle22 said in Teamviewer hacked:

@MattSpeller said in Teamviewer hacked:

@wirestyle22 said in Teamviewer hacked:

@MattSpeller I don't think we can say it's a fact yet though. There is no proof yet.

You're 100% correct but in what way does that matter at all?

Certainly didn't for me, I uninstalled it from both my machines and my parents machine within an hour of Nic posting it.

Well yeah, be safe. That's a just in-case measure. I'm talking about who is really at fault here though

TeamViewer - it might not even be their fault, but it's still their fault. It sucks, but that's life.

Edit: for clarity, points against them

• poor communication
• its ultimately their software
• could have put in stronger password requirements
• etc

Good points for sure.

wirestyle22

@david.wiese said in Teamviewer hacked:

@Dashrender said in Teamviewer hacked:

@david.wiese said in Teamviewer hacked:

I have had my work Surface Pro 3 taken over Twice while teamviewer was running. Changed all Passwords, enabled 2FA and it still happened again. Contacted Teamviewer Support and what did they say? They said it must have been my fault and their software had no security holes. My Co-workers computer was also taken over, however he didn't have 2FA enabled. Nothing was compromised on our systems but we are now in the search for a new provider. Teamviewer can no longer be trusted! Their support is crap. They play, let's blame the users and not actually look at our software.

edit: I should add that I had a 18 character password with letters, numbers, caps as well as 2FA enabled plus the normal work security settings. Teamviewer was the hole, not our system.

How do you know it was team viewer the second time? The hackers could have installed some other software that gave them control.

I wiped my machine and started from scratch.

Interesting.

scottalanmiller

@MattSpeller said in Teamviewer hacked:

Edit: for clarity, points against them

• poor communication
• its ultimately their software
• could have put in stronger password requirements
• etc

Poor communication, certainly.

Ultimately their software... I don't agree. Ultimately it is end user access. If TV didn't have a breach, it's ultimately on the end user.

Stronger passwords requirements... not relevant. It's not their responsibility nor do those things really protect you.

wirestyle22

@scottalanmiller said in Teamviewer hacked:

@MattSpeller said in Teamviewer hacked:

Edit: for clarity, points against them

• poor communication
• its ultimately their software
• could have put in stronger password requirements
• etc

Poor communication, certainly.

Ultimately their software... I don't agree. Ultimately it is end user access. If TV didn't have a breach, it's ultimately on the end user.

Stronger passwords requirements... not relevant. It's not their responsibility nor do those things really protect you.

This comes down to what is reasonable to expect out of our users. I don't think we will all agree on it.

scottalanmiller

@wirestyle22 said in Teamviewer hacked:

@scottalanmiller said in Teamviewer hacked:

@MattSpeller said in Teamviewer hacked:

Edit: for clarity, points against them

• poor communication
• its ultimately their software
• could have put in stronger password requirements
• etc

Poor communication, certainly.

Ultimately their software... I don't agree. Ultimately it is end user access. If TV didn't have a breach, it's ultimately on the end user.

Stronger passwords requirements... not relevant. It's not their responsibility nor do those things really protect you.

This comes down to what is reasonable to expect out of our users. I don't think we will all agree on it.

Doesn't matter what we expect of them. It's the end user's responsibility, period. Even if TV offered zero password requirements, as long as they offered a means of being safe, the fault is 100% not theirs.