Author Topic: Reddit thread on the hacking incidents  (Read 3135 times)

Admin

  • Administrator
  • Sr. Member
  • *****
  • Posts: 450
Reddit thread on the hacking incidents
« on: June 11, 2016, 02:33:30 PM »
Someone (u/Executioner1337) has done a lot of research regarding the issue on reddit, there a re a lot of links at the bottom of the article that may be helpful in determining if you have been hacked.
https://www.reddit.com/r/technology/comments/4m7ay6/teamviewer_has_been_hacked_they_are_denying/

Admin

  • Administrator
  • Sr. Member
  • *****
  • Posts: 450
Re: Reddit thread on the hacking incidents
« Reply #1 on: June 12, 2016, 02:48:59 PM »
You can find the logs here:

    C:\Program Files (x86)\TeamViewer\TeamViewer11_Logfile.txt
    C:\Program Files (x86)\TeamViewer\TeamViewer11_Logfile_OLD.txt

Do a search for "webbrowserpassview.exe". If it's in your logs, you should change your passwords immediately. This software essentially shows and exports all your saved username and passwords from your browsers (chrome, IE, firefox, etc). To see what the program can do, you can even download and run it yourself from the official website.

Edit: Partial log entry showing the offending text: http://pastebin.com/cAYCLjjp

Screenshot of WebbrowserPassView program: http://imgur.com/YKIoVsL

Admin

  • Administrator
  • Sr. Member
  • *****
  • Posts: 450
Re: Reddit thread on the hacking incidents
« Reply #2 on: June 12, 2016, 02:49:35 PM »
Login to the teamviewer management console website here: https://login.teamviewer.com/nav/home

Then in the upper right corner click on your username and edit profile, then click on "Active Logins", for me it lists every device and location in the last year that accessed my account.

edit: If you enable 2fa or reset your password it will wipe the list of active logins because it logs out every device

zambonier

  • Newbie
  • *
  • Posts: 1
Re: Reddit thread on the hacking incidents
« Reply #3 on: December 12, 2016, 04:44:24 PM »
Login to the teamviewer management console website here: https://login.teamviewer.com/nav/home

Then in the upper right corner click on your username and edit profile, then click on "Active Logins", for me it lists every device and location in the last year that accessed my account.

edit: If you enable 2fa or reset your password it will wipe the list of active logins because it logs out every device"

I wish I had known about the wiping of the list BEFORE I turned on 2fa and changed my password. Perhaps a warning is needed on the changed password and 2fa enable screens.