The German remote maintenance software provider Teamviewer has been hit by a cyber attack. The hackers are said to have obtained the access data of an employee. According to current information, customer data and the product environment were not affected.
Teamviewer has reported a cyberattack on its IT infrastructure. The German provider of remote maintenance software has discovered “irregularities” within its IT environment, it said in a statement.
According to the current status of the investigation, the attack is limited to the Teamviewer IT environment. There is no indication that the attackers had access to the product environment or customer data. Teamviewer emphasizes that it has strictly separated the corporate IT environment, the production environment, and the Teamviewer connectivity platform, in accordance with best practices, in order to prevent unauthorized access and lateral movement between the different environments.
As soon as the incident was discovered, the defense team was activated, investigations were launched in collaboration with recognized cybersecurity experts and protective measures were put in place.
The hackers accessed the IT environment on Wednesday, June 26 using the compromised login data of an employee. Evidence suggests that the Russian hacking group APT29, also known as Midnight Blizzard or Cozy Bear, is behind the attack, Teamviewer reports.
