MADRID, June 28 (Portaltic/EP) –
TeamViewer has identified a cyberattack linked to its employees’ account credentials, attributed to the Russian cybercriminal group Midnight Blizzard, although, at this time, there is no evidence that it affected the product environment or customer data.
TeamViewer is a ‘software’ that allows remote access to equipment, such as computers, to control them and provide remote support. In this sense, it is a platform commonly used in business environments.
The company has shared that on Wednesday, June 26, its security team detected an irregularity in TeamViewer’s internal corporate computing environment and that they immediately activated their response team and investigation procedures to “implement the necessary corrective measures.”
After continuing to investigate alongside other “world-leading” cybersecurity experts, the company has now concluded that this is a cybersecurity attack linked to the credentials of an employee account, within the corporate IT environment.
This was stated by TeamViewer in a statement on its website, in which it also detailed that, together with its external incident response support, it has attributed the malicious activity to the malicious actor known as APT29 or Midnight Blizzard.
Specifically, as has been learned in investigations of cyberattacks on other entities by the same malicious actor, it is a group of Russian cybercriminals that acts backed by the government, since they work as spies for Russian intelligence.
In this sense, TeamViewer has detailed that, according to the current findings of the investigation, the attack was contained within the corporate environment, so there is no evidence that cybercriminals gained access to the product environment or customer data.
The company also stressed that it keeps all servers, networks and accounts “strictly separate” in order to “help prevent unauthorized access and lateral movement between different environments” in the context of these attacks.
With all this, TeamViewer has concluded by highlighting the importance it gives to the safety of its clients, which is why it has assured that they will maintain “transparent communication” with the parties involved in the incident. Thus, they will continue to update the status of their investigations in their Trust Center.
