Many TeamViewer users are being hacked.

[Dan Goodin]

(credit: modpr0be)

For more than a month, users of the remote login service TeamViewer have taken to Internet forums to report their computers have been ransacked by attackers who somehow gained access to their accounts. In many of the cases, the online burglars reportedly drained PayPal or bank accounts. No one outside of TeamViewer knows precisely how many accounts have been hacked, but there's no denying the breaches are widespread.

Continue reading on ArsTechnica

 

[sfx2000]

More info here

https://securityintelligence.com/compromised-before-my-very-eyes-how-i-almost-got-hacked/

and here

http://thehackernews.com/2016/06/teamviewer-hacked-security.html

If you are a TeamViewer user (it's a common tool that many do use to support family members, etc) - go and get the update now - they've introduce additional security features (Trusted Devices, Data Integrity).

It goes without saying - Teamviewer (or any other remote software) should only be used with specific intent, and strong passwords..

 

[whsbuss]

More info here

https://securityintelligence.com/compromised-before-my-very-eyes-how-i-almost-got-hacked/

and here

http://thehackernews.com/2016/06/teamviewer-hacked-security.html

If you are a TeamViewer user (it's a common tool that many do use to support family members, etc) - go and get the update now - they've introduce additional security features (Trusted Devices, Data Integrity).

It goes without saying - Teamviewer (or any other remote software) should only be used with specific intent, and strong passwords..

Personally I use Windows RDP and follow this great setup guide. http://www.howtogeek.com/175087/how-to-enable-and-secure-remote-desktop-on-windows/

 

[sfx2000]

Personally I use Windows RDP and follow this great setup guide. http://www.howtogeek.com/175087/how-to-enable-and-secure-remote-desktop-on-windows/

RDP is good stuff - I use it occasionally - and there is a Mac client that works pretty well.

TeamViewer is nice as it's cross platform - Mac to Win, Win to Mac, and a lot of options - I certainly hope the team there sorts out what exactly is going on and get it fixed.

 

[sfx2000]

Ars has an update on the TeamViewer issue...

http://arstechnica.com/security/201...-evidence-of-2fa-bypass-in-mass-account-hack/

 

[Spock83]

Interesting. I was hacked too. But luckily i was there when it happened.

 

[charlie2alpha]

I read about this hack early enough, wasn't affected as I do not run it as a daemon but only on demand, using the portable client.

What I would like to know really is whose fault this really was? The company blames the users for having weak passwords, the users blame the company, some even claim that they had 2-factor authentication enabled and they were still hacked. If that last accusation is true, the company behind TeamViewer screwed up majorly with security.

 

[System Error Message]

I wasnt breached even though i had the daemon running but than none of my computers have unattended access properly set up. They're saying its the accounts that got hacked rather. So even if my computer is running the daemon it appears offline or without a way to access from my account.

 

[htismaqe]

I have it running at startup on several family PCs I support but like SEM, I don't have unattended access setup so the users actually have to authorize the connection. Plus, I don't have a TeamViewer account, so all of the connections are ad hoc.

 

[sfx2000]

I have it running at startup on several family PCs I support but like SEM, I don't have unattended access setup so the users actually have to authorize the connection. Plus, I don't have a TeamViewer account, so all of the connections are ad hoc.

I use TeamViewer in the exact same way - no unattended access, so the remote party has to approve/allow the connection.