Teamviewer has been hacked--users please take precaution

Chary

Never sleeps
OP
Chief Editor
Joined
Oct 2, 2012
Messages
12,334
Trophies
4
Age
27
Website
opencritic.com
XP
128,052
Country
United States
It looks like there's been a security breach for popular remote control program Teamviewer. Reddit users on r/teamviewer have been reporting that their paypal information and passwords were stolen during random remote connections from hackers. If you use the program, be sure to check C:\Program Files\TeamViewer\Connections_incoming.txt to see who's been accessing your computer. I'd recommend that you uninstall Teamviewer at this time, just to ensure nothing bad happens.

:!: Subreddit and discussion
 

FAST6191

Techromancer
Editorial Team
Joined
Nov 21, 2005
Messages
36,798
Trophies
3
XP
28,284
Country
United Kingdom
Hmm, I saw it had troubles connecting/generating numbers earlier today.

Trying to think how many machines it might be installed on. An awful lot given it is a standard option I pick in ninite. Not sure what I want to do here, much less at 3am in my own time zone (it will be on machines in several more that I am variously responsible for).

Tomorrow may be a busy day.
 

FAST6191

Techromancer
Editorial Team
Joined
Nov 21, 2005
Messages
36,798
Trophies
3
XP
28,284
Country
United Kingdom
It is possible to use such things somewhat safely, though I must confess I don't think I sandboxed any installs of this unless you count having them inside VMs for some things. Also after you have tried talking your elderly relatives through whatever operation they are trying to do this week over the phone (probably trivial for you, hard as you like trying to translate it and worse if things are not in alphabetical order because someone clicked and dragged or something) then you will begin to appreciate the sentiment behind the great album title "give me convenience or give me death".

Reading around though it seems it might be people that have accounts rather than just numbers, not sure about simple unattended access. If it is just accounts then that makes my life easier -- I usually do not do any accounts so people have to phone me and tell me numbers as it gives them a false peace of mind (more than once I heard it is scary seeing the mouse move and files being opened or similar, yet my command line or SSH fun does not even register).

Teamviewer PR also seem to be handling it very badly so there is at least the breakdown of what they have done there to look forward to.
 
  • Like
Reactions: daxtsu

Joom

 ❤❤❤
Member
Joined
Jan 8, 2016
Messages
6,067
Trophies
1
Location
US
Website
mogbox.net
XP
6,075
Country
United States
Aw fuck. This is why decentralized RATs are better. Albeit often used maliciously, I tend to use things like DarkComet and NetWire over TeamViewer (with user consent of course). And yes, TeamViewer is a RAT. It's just a commercial, benign one.
 
  • Like
Reactions: VinsCool

cearp

瓜老外
Developer
Joined
May 26, 2008
Messages
8,721
Trophies
2
XP
8,468
Country
Tuvalu
Aw fuck. This is why decentralized RATs are better. Albeit often used maliciously, I tend to use things like DarkComet and NetWire over TeamViewer (with user consent of course). And yes, TeamViewer is a RAT. It's just a commercial, benign one.
ok yeah... but 'rat' is negative, without permission.
teamviewer is with permission... so i wouldn't call it a 'rat'. (although sure, 'remote assisted tool' is correct)
 

Joom

 ❤❤❤
Member
Joined
Jan 8, 2016
Messages
6,067
Trophies
1
Location
US
Website
mogbox.net
XP
6,075
Country
United States
ok yeah... but 'rat' is negative, without permission.
teamviewer is with permission... so i wouldn't call it a 'rat'. (although sure, 'remote assisted tool' is correct)
TeamViewer is a RAT in every sense of the definition. There are malicious VNC servers as well, but hey. Those intended for malicious purposes can still be used for legitimate purposes. They tend to work better than TV as well. :) Besides, I don't really care what my grandmother's passwords and keystrokes are.
 

Yoshimashin

Penguin Spy
Member
Joined
Aug 17, 2006
Messages
405
Trophies
1
Age
36
Location
Seattle, Washington
XP
523
Country
United States
This probably explains how both my Amazon and Ebay randomly purchased multiple $100 giftcards.

As a precaution I removed this software, cleared my Chrome password log and unrooted my phone. Good to know I found the probable cause.


Edit

ISH5w3m.png


Yup.




Goddammit.
 
Last edited by Yoshimashin,

Pedeadstrian

GBAtemp's Official frill-necked lizard.
Member
Joined
Oct 12, 2012
Messages
3,966
Trophies
2
Location
Sandy Eggo
XP
3,876
Country
United States
Didn't Teamviewer get hacked weeks if not months ago? I remember reading about it. Kinda late for a precautionary post. Funny thing, I signed up for Teamviewer in 2010 and didn't get any mail from them other than for the initial email validation, but after reading about Teamviewer being hacked I've received four new contact requests, which were obviously people trying to hack my computer.
 

Site & Scene News

Popular threads in this forum

General chit-chat
Help Users
  • Veho @ Veho:
    Mkay.
  • Veho @ Veho:
    I just ordered another package from China just to spite you.
  • SylverReZ @ SylverReZ:
    Communism lol
  • SylverReZ @ SylverReZ:
    OUR products
  • The Real Jdbye @ The Real Jdbye:
    @LeoTCK actually good quality products are dying out because they can't compete with dropshipped chinese crap
    +2
  • BakerMan @ BakerMan:
    @LeoTCK is your partner the sascrotch or smth?
  • Xdqwerty @ Xdqwerty:
    Good morning
  • Xdqwerty @ Xdqwerty:
    Out of nowhere I got several scars on my forearm and part of my arm and it really itches.
  • AdRoz78 @ AdRoz78:
    Hey, I bought a modchip today and it says "New 2040plus" in the top left corner. Is this a legit chip or was I scammed?
  • Veho @ Veho:
    @AdRoz78 start a thread and post a photo of the chip.
    +2
  • Xdqwerty @ Xdqwerty:
    Yawn
  • S @ salazarcosplay:
    and good morning everyone
    +1
  • K3Nv2 @ K3Nv2:
    @BakerMan, his partner is Luke
  • Sicklyboy @ Sicklyboy:
    Sup nerds
    +1
  • Flame @ Flame:
    oh hi, Sickly
  • K3Nv2 @ K3Nv2:
    Oh hi flame
  • S @ salazarcosplay:
    @K3Nv2 what was your ps4 situation
  • S @ salazarcosplay:
    did you always have a ps4 you never updated
  • S @ salazarcosplay:
    or were you able to get new ps4 tracking it \
    as soon as the hack was announced
  • S @ salazarcosplay:
    or did you have to find a used one with the lower firm ware that was not updated
  • K3Nv2 @ K3Nv2:
    I got this ps4 at launch and never updated since 9.0
  • K3Nv2 @ K3Nv2:
    You got a good chance of buying a used one and asking the seller how often they used or even ask for a Pic of fw and telling them not to update
    K3Nv2 @ K3Nv2: You got a good chance of buying a used one and asking the seller how often they used or even ask...