Based on current findings of the investigation, the attack was contained within the Corporate IT environment and there is no evidence that the threat actor gained access to our product environment or customer data.

If it were a company other than TeamViewer I’d probably believe them, but since it’s TeamViewer, they could just as easily be lying since they have lied in the past about breaches IIRC.