loader gif

Chinese cyberspies breached TeamViewer in 2016

Chinese cyberspies breached TeamViewer in 2016 (Breaches and Incidents)

Chinese state-sponsored hackers breached German software maker TeamViewer in 2016, the company confirmed today to ZDNet after a report by German newspaper Der Spiegel. The malware was first seen in 2009, and was initially used just by one group of Chinese hackers -- which security researchers also started referencing as the Winnti group. However, there are two Chinese hacking groups that fit this attack pattern, and they are APT 10 (a group focused on hacking cloud-based service providers) and APT17 (a group focused on supply-chain attacks). Hackers have always targeted TeamViewer because of the access the company's service can provide, in the case of a successful breach. Months before the successful Winnti hack in the fall of 2016, TeamViewer had faced a wave of user account hijacks, which many customers reported as originating from Chinese IP addresses. TeamViewer is not the only German company that has been hacked and infected with the Winnti malware over the past three years.

loader gif