See also 10 dangerous app vulnerabilities to watch out for (free PDF) Chinese state-sponsored hackers breached German software maker TeamViewer in 2016, the company confirmed today to ZDNet after a report by German newspaper Der Spiegel. “In autumn 2016, TeamViewer was target of a cyber-attack,” a TeamViewer spokesperson said via email. “Our systems detected the suspicious activities in time to prevent any major damage.” The TeamViewer spokesperson told ZDNet that an investigation was conducted at the time, but did not find any evidence of abuse. “An expert team of internal and external cyber security researchers, working together closely with the responsible authorities, successfully fended off the attack and with all available means of IT forensics found no evidence that customer data or other sensitive information had been stolen, that customer computer systems had been infected or that the TeamViewer source code had been manipulated, stolen or misused in any other way,” the company said in an email. Hackers deployed Winnti malware According to Der Spiegel, the hackers who breached TeamViewer’s netwok had used Winnti, a backdoor trojan historically known to be in the arsenal of Beijing state hackers. The malware was first seen in 2009, and was initially used just by one group of Chinese hackers — which security researchers also started referencing as the Winnti group. However, this changed in recent years when security researchers began to see the Winnti malware in attacks linked to multiple different Chinese-linked threat actors, according to reports from ProtectWise 401 TRG and Chronicle…. [Read full story]
ZDNet is a business technology news website published by CBS Interactive, along with TechRepublic. The brand was founded on April 1, 1991, as a general interest technology portal from Ziff Davis and evolved into an enterprise IT-focused online publication owned by CNET Networks.