APT Group Cozy Bear

Cyber attack on TeamViewer

Cyberangriff, Cyberattacke, TeamViewer, Fernwartungssoftware
Source: Wirestock Creators / Shutterstock.com

The German software provider TeamViewer claims to have been the victim of a cyberattack. On Wednesday, TeamViewer’s security team detected an “anomaly” in the internal IT environment, TecDax announced on its website.

The defense team was activated immediately and appropriate processes were initiated. “Together with globally recognized IT security experts, we immediately began investigations and implemented the necessary protective measures.”


TeamViewer is one of the largest providers of remote maintenance software, which is used in companies to dial into employees’ screens to resolve a service request, among other things. Sensitive information can also be obtained in this way. TeamViewer emphasized that the company’s internal IT environment is completely independent of the product environment. “There is no indication that our product environment or customer data may have been affected. Investigations are ongoing and our primary focus remains on ensuring the integrity of our systems.”

The portal Heise.de referred to information from various IT security organizations that the attack was the work of an APT group (Advanced Persistant Threat). APT groups are usually backed by state actors. For example, an excerpt of a memo from the IT security company NCC Group is circulating on social networks, which mentions a significant compromise by an APT group. It is said to be “Cozy Bear”, a group controlled by the Russian secret service SWR. The Kremlin hackers are also suspected of attacking several German parties with malware.


Weitere Artikel