Recent findings from CCleaner APT investigation reveal that attackers entered the Piriform network via TeamViewer
Unrelated to the CCleaner attack, Avast also found ShadowPad samples active in South Korea and Russia, logging a financial transaction
blog.avast.com