TeamViewer links corporate cyberattack to Russian state hackers

TeamViewer disclosed that on June 26 an employee credential was used to breach its corporate IT network; the company attributes the activity to the Russian state-sponsored APT known as Midnight Blizzard (APT29/Cozy Bear/Nobelium). TeamViewer states its production environment and customer data remain isolated and unaffected, and recommends customers enable MFA, configure allow/block lists, and monitor TeamViewer logs and network connections.