Apparantly TeamViewer was hacked

Mynight

Mynight

Mynight

Soldato
Joined
16 Jun 2013
Posts
5,375
http://www.theregister.co.uk/2016/06/01/teamviewer_mass_breach_report/

They're saying they haven't had a breach but that users were using the same password across sites.

The bit that intrigues me is after logging in these attackers are going after the passwords stored in your browser and draining bank accounts.

Obviously intended as a heads up if you use teamviewer but I was more interested in the browser password bit.

I can understand saving email/forum/social media account passwords but I've never saved anything to do with money.

Do many people here save their banking/store passwords on their PC?
 
Nope, I also have one of those keypads that I need to use for login on, I would e thought most people had those :/
 
To log into my online banking I need my user number, answer a random security question and enter certain digits of my password so it seems a bit strange any bank's security would just be something that can be stored in a browser and automatically retrieved.
 
American banks have terrible online security. I don't think that this kind of attack would work against UK online banking accounts.
 
All my banks require you to enter a random security answer which isn't saved on my computer, then either particular digits/letters of a longer password or the two-factor auth code from the app on my phone so I don't think they could get into that. PayPal lets you bypass the two-factor auth if you enter some details but again those aren't saved on my computer either.

Most of my passwords are stored in LastPass which my browser automatically logs into. I really should change this so it either times out or requires my master password after a long period of inactivity or something, but it's 30-odd characters/letters/symbols so a little annoying to type!

Little bit worrying as I use TeamViewer as a backup on all our servers.

edit: Just changed my TeamViewer password, enabled two-factor auth for it and set LastPass to log out if Chrome has been closed for more than 15 minutes.
 
Last edited:
2FA should be standard for all online banking log ons imo,can't understand how all banks don't offer that.
 
APM said:
2FA should be standard for all online banking log ons imo,can't understand how all banks don't offer that.
Click to expand...

AFAIK my bank doesn't have 2FA for logins but does require me to use a card reader for adding a new Payee.

Would be nice to have some kind of Google Authenticator-like 2FA for simply logging into my account.
 
MonkeyMan said:
Just enabled it, have teamviewer on all my computers as I'm a lazy sod and don't like stairs :o

Really need to sort my passwords out, if I lost my phone I would be screwed.
Click to expand...

Why not just use remote desktop? The performance is considerably better and you don't even need an internet connection.
 
Last edited:
I'm unconvinced there's been a TV breach too. I have enabled 2FA but I did read that someone with 35 TV machines - 4 of which had simple passwords, that the other 31 were not 'hacked'.
 
I forgot I even made this thread :D.

Yeah I dont think TV was breached after reading up further.

There are obviously reports of people having strong and unique passwords/2FA but lets be honest how many people are going to admit being at fault.
 
We had an email from our IT team telling us that until further notice, all use of teamviewer should be stopped. With recent bad press that the company has had for a few issues.. we are not taking any chances.
 
Energize said:
Why not just use remote desktop? The performance is considerably better and you don't even need an internet connection.
Click to expand...

Just a nice easy way to manage them all (including family members around the country).

Plus can log in from my phone which is handy, might have another look at remote desktop but teamviewer works fine and with 2FA is safe enough.
 
You must log in or register to reply here.
Back
Top Bottom