![]() ![]() If a hacker had access to these accounts, it would say that your username connected. As in it would say "user ButteringToast connected to xxx". In the log files, when you connect using YOUR account, YOUR account name is presented in the logs. Not everyone hacked had a Teamviewer account (you can pass this off though as maybe they forgot they made one when they signed up) However, I no longer think this is the case for two reasons: I originally though that peoples TeamViewers accounts were being hacked, and the hacker was then logging into their account and being able to access all of their saved PCs (by ID) from there. I have some ideas / questions I want to bounce around. It is still unclear if this is a weak password issue or it is a vulnerability in TeamViewer. Now we have had many remarks from hacked and non hacked people. Tagging off your comment seems as it is at the top for ideas. It is up to you to make your own decision on what you think is happening / what to do. What has been posted is just advice and rumours. I have just kept track and combining what others are saying. u/Lord_Greywether has kindly put the results into a GoogleDocs file for easy reading.ĭISCLAIMER: I have no inside knowledge. If asked for log files, run the following command (with root) on a command line: teamviewer –ziplog Please send us the ZIP files. The file can be created via command line. ![]() The relevant information and logfiles are stored within a ZIP file. Why do you want the logs? To look and see if there have been any mysterious remote connections, etc. For whatever reason, they decided not to do it that way w/Linux. On the Windows machines I uninstalled TV from, the log files remained, as they should be. Apparently the Linux version does not just automatically create separate log files continuously and save them somewhere. It seems you must have TeamViewer installed in order to view the TV log files. LINUX USERS special note: GRAB YOUR LOG FILES BEFORE YOU UNINSTALL TEAMVIEWER Important information about the log files from /u/thingfour If you still feel scared, cuddle a blanket or a soft toy! It is advised to do a full wipe of you computer as you have no idea what they may have hidden.īest way at the moment in time till it is confirmed what method is being used to attack TV users is to stop TV from running completely, or uninstall it for the time being. Password managers are highly recommended. Using another computer than is clean, reset all of your passwords. Other signs are checking your browser history for sites you haven't been on, checking your emails for any new purchases (they have started to delete these emails), checking your PayPal accounts, checking your card statements and check the log files of TV. If you are unsure what to do, unplug your router. If you are sat at your machine, you will see someone take over it, of this happens, disconnect them and remove any internet access. There have also been reports of them installing malware. Popular ones seem to be Amazon, PayPal, eBay. It looks like they are stealing login credentials for popular online shops and then going to town with these saved credentials. We have no idea, we don't know how these attacks are happening. ![]() Many people are questioning this official response though as unconfirmed reports suggest that the DNS records were linking to China at one point.ĭoes 2FA and Whitelisting accounts keep me secure? Official response is no, it was caused by a DDOS attack. The DNS outage that TV had, was this anything to do with what we are seeing now. ![]() This may well be the case, but there have been plenty of reports now that users with very secure, randomly generated and unique passwords have also had their computers compromised. Team Viewer is putting the blame, very publicly, on users having weak / compromised passwords from other site breaches. Now it is stickied I feel as though I should answer some FAQ (this my first time doing anything like this so sorry for any mistakes!) This was much more widespread than what I was expecting. Is your TV Account Password the same as any other password: Is you TV Account email address listed as pwned: If you could use the format below it will make it easier to read: I feel as though this thread is really needed so we can try and find a pattern to what is going on here. ![]()
0 Comments
Leave a Reply. |
Details
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |