CCleaner Hacked to Distribute Malware

Security warning: Hackers compromised CCleaner and installed a backdoor
Hackers hid malware in CCleaner antivirus software
Author

20 September, 2017

Between August 15 and September 12, 2.27 million users downloaded CCleaner, which is distributed by Avast, which contained a "multistage malware payload", hidden on top of CCleaner installation.

Cisco Talos says the malicious version of CCleaner was released on August 15; it notified Piriform-CCleaner's UK-based developer, which was acquired by Avast in July-on September 13 and the server was shut down.

Billing itself the "world's most popular PC cleaner and optimisation tool", Avast's CCleaner is trusted by consumers to speed up PC and smartphone performance by removing unneeded/necessary files.

The company has called this "non-sensitive data" used to profile affected PCs. CCleaner users have received a notification to update to a new version, but Monday's warning is the first time they've been told why.

CCleaner has been downloaded by more than 2.27 million people, who are believed to have been affected by the attack.

Note to criminals: I was not using version 5.33.6162. Users who'd had undetected malware on their computers for (potentially) a month could've had their data stolen or their systems compromised in other ways.

More news: Altherr's grand slam lifts Phillies past Dodgers 4-3

Avast vice-president: products Paul Yung has issued a statement confirming that the 5.33.6162 version of CCleaner and the 1.07.3191 version of CCleaner Cloud were illegally modified before being released to the public. Users of our cloud version have received an automated update.

The virus was unearthed by tech security researchers, and users of the app have been advised to update their software immediately.

Unfortunately, there's very little users could've done to prevent this from happening, as the malware came with an official app, hosted on an official server. The nature of this compromise - getting a backdoor into maintenance software - strongly suggests that criminals managed to gain access to a machine used in the process of producing the CCleaner application.

He apologised for any inconvenience that had been caused and said the company's investigation into the attack was "ongoing".

Talos researcher Craig Williams said it was a sophisticated attack - saying that the optimisation software had a proper digital certificate, which means that other computers automatically trust the program.


More news


  • Trump Mocks Clinton In Another Early-Morning Twitter Tirade

    Trump Mocks Clinton In Another Early-Morning Twitter Tirade

    White House spokeswoman Sarah Sanders said later that day that Clinton was pushing "false narratives" in the book. Mr Trump attacked Mrs Clinton directly on Wednesday in a series of posts on the social media site.
    BSF jawan killed as Pakistan violates ceasefire along LoC

    BSF jawan killed as Pakistan violates ceasefire along LoC

    The deceased BSF man was identified as constable Brijendra Bahadur Singh of 192 battalion. Episodes of truce infringement by Pakistani troops have expanded strongly this year.
    Cooper declares state of emergency ahead of Hurricane Irma

    Cooper declares state of emergency ahead of Hurricane Irma

    But the latest track of the storm shows it moving westward, which could lessen the impact Irma would have on WNC. The most recent briefing on Hurricane Irma was published by the National Weather Service at 5 p.m.
  • Democrats to study every option to halt Obamacare repeal bill

    Democrats to study every option to halt Obamacare repeal bill

    While Homeland Security may not be the traditional committee of jurisdiction over health care issues, it is chaired by GOP Sen. But some of the same GOP senators who blocked various stages of earlier repeal efforts are withholding their support.
    Apple's latest iTunes update reduces the clutter by removing iOS App Store

    Apple's latest iTunes update reduces the clutter by removing iOS App Store

    When you swipe up, you'll no longer see the half-screen block with a handful of connectivity and utility options . You can still find iOS apps , ringtones , and books (PC only) that you've downloaded in your iTunes Media folder.
    Family die after falling into volcanic crater in Italy

    Family die after falling into volcanic crater in Italy

    The Campi Flegrei is an area with more than 30 volcanic craters , whose possible eruptions worry scientists. It's not known if the boy lost consciousness because of the fumes or if the quicksand pulled him in.
  • Southampton Premier League - 16 September 2017

    Southampton Premier League - 16 September 2017

    Hodgson's attitude is that individual players should sacrifice themselves for the good of the team. For Hodgson it is crucial, though, because of the way his teams are set up.
    Day bags hole-in-one, shares BMW lead

    Day bags hole-in-one, shares BMW lead

    I missed those today and, unfortunately, shot 1 under. "It certainly took a few holes for me to adjust to it and I didn't quite have the stuff".
    Rash of sick pilots grounds Air Berlin flights

    Rash of sick pilots grounds Air Berlin flights

    A decision on the fate of Air Berlin could come as quickly as September 21, three days before the German national election. The airline filed for insolvency in August after its main shareholder, Gulf carrier Etihad , withdrew financial support.
  • Toys R Us Has Officially Filed for Bankruptcy

    Toys R Us Has Officially Filed for Bankruptcy

    U.S. toy retailer Toys "R" Us has filed for bankruptcy protection in the USA and in Canada in a bid to restructure its debts . Toys "R" Us is the second-largest toy seller in the USA behind Amazon , according to consulting firm Kloster Trading Corp.
    Apple TV catches up to competitors by adding 4K and HDR

    Apple TV catches up to competitors by adding 4K and HDR

    AppleApple unveiled the iPhone X on September 12 alongside other new iPhones, the Apple Watch Series 3, and Apple TV 4K. The Apple Watch Series 3 will feature the watchOS4 operating system software which includes an updated Heart Rate app.

    IPhone 8 is iPhone X: Apple's big secret spills

    As per the new leak of its firmware, there will be no any Touch ID in the new iOS device but the Touch ID is replacing by Face ID. As per this new Face ID feature , users just need to move their phone around the face to unlock the device.