Ransomware Propagation Tied to TeamViewer Account
As if you needed another reason to distrust remote access viewers, David Bisson reports:
Researchers have tied the propagation of a new type of ransomware to a TeamViewer user.
TeamViewer is a cross-platform service that enables remote computer access for tech support calls, meetings, and other purposes. It has been installed on more than a billion devices, which makes its potential attack surface quite extensive.
On March 9th, someone posted to the Bleeping Computer forum a thread in which they describe how all of their pictures videos, and PDFs, among other files, have been encrypted and that the “.surprise” extension has been concatenated to every affected filename.
Read more on Tripwire State of Security.