Continuum Security Breach Reported on Reddit



  • https://www.reddit.com/r/msp/comments/4v23up/continuum_breach/

    We noticed odd user accounts on some of our client's SBS boxes that were recently created and logged in:

    •edc
    •hello
    •iijnnji

    We noticed that the "SAAZDEPUSR" was logged in and had been used to create the subsequent accounts. After shadowing their sessions, they had banking information pulled up and were running wire transfers to god knows where.

    We acted fairly swiftly and disabled/logged off all four accounts, and I would suggest you check your clients and do the same.



  • Interesting to note that people compared it a bit to the TeamViewer breach, but it was quickly pointed out that, while a PR disaster, TeamViewer did not actually have a breach.

    I wonder if that is what the final verdict was.