Monday, September 18th 2017
Piriform Hacked, CCleaner August Versions (v5.33.6162) Injected, Compromised
In another large-scale attack that's bound to increase users' awareness on their systems' security, news have broken out that Piriform, creators of the popular CCleaner software tool (estimated to be instaled in some 130 million devices), have suffered a hack on their servers that compromised some installer packages of the software. Piriform, which was purchased by popular security software company Avast last July, was hacked last August, and the changes to the installer packages could potentially allow hackers to control the devices of more than two million users, the company and independent researchers said on Monday.
Specifically, hackers embedded remote administration tools on CCleaner v5.33.6162 and CCleaner Cloud v1.07.3191, tools that then tried to connect to several unregistered web pages, looking to download additional unauthorized programs, according to Cisco's Talos security research unit. Users would have noticed nothing wrong on their systems, since the entire malicious string of code was run under CCleaner's authentic digital certificate. The nature of the attack code suggests that the hacker won access to a machine used to create CCleaner, Talos researcher Craig Williams said.
CCleaner does not feature automatic updates, so if you make use of CCleaner, make sure to check your software version, and force an update through the app. Or better yet, make sure to uninstall the app and install the new, corrected version, which currently stands at 5.34.6207.
Piriform said that Avast, its new parent company, had uncovered the attacks on Sept. 12, with a new, uncompromised version of CCleaner being released the same day. A clean version of CCleaner Cloud took a little while longer to be released, seeing the light of day on Sept. 15. Talos' security Craig Williams said that the issue was detected at an early stage, when the hackers appeared to be collecting information from infected machines, rather than forcing them to install new programs.
Source:
Reuters
CCleaner does not feature automatic updates, so if you make use of CCleaner, make sure to check your software version, and force an update through the app. Or better yet, make sure to uninstall the app and install the new, corrected version, which currently stands at 5.34.6207.
Piriform said that Avast, its new parent company, had uncovered the attacks on Sept. 12, with a new, uncompromised version of CCleaner being released the same day. A clean version of CCleaner Cloud took a little while longer to be released, seeing the light of day on Sept. 15. Talos' security Craig Williams said that the issue was detected at an early stage, when the hackers appeared to be collecting information from infected machines, rather than forcing them to install new programs.
58 Comments on Piriform Hacked, CCleaner August Versions (v5.33.6162) Injected, Compromised
Typically, last refers to a year previous, not two months ago.
Also, everyone equating this to Equifax, the security chief lady there was a music composition major. You can be assured you'll NEVER see such nonsense at avast...
@sutyi
As far as I know, no one was sacked because of the acquisition. Whole Piriform team has been transfered under avast! "control".
*However with past history of Windows XP you will still get security patches today but only for major bugs such as Heartbleed, unless you are a government organization paying Microsoft millions of dollars to still support it for antiquated systems.
I use Windows 10 myself but I'm just pointing out that Windows 7 is still technically supported. Heck, Windows Vista is still supported but why in God's name you would still be using that awful piece of crap I have no idea.
www.reuters.com/article/us-security-avast/hackers-compromised-free-ccleaner-software-avasts-piriform-says-idUSKCN1BT0R9
Here's the official statement from Piriform.
www.piriform.com/news/blog/2017/9/18/security-notification-for-ccleaner-v5336162-and-ccleaner-cloud-v1073191-for-32-bit-windows-users
EDIT: Sorry. I missed it. There it is again. Just in case anybody else did.
vista is fine, i only used it after SP2 for several years, everything worked, performance was fine, i had pretty much no difference when changing to 7
but vista isnt supported anymore, who told you that it was?
How long after discovery did it take for piriform to announce the hack? They should have used the same email list they use for update availability to let users know what had happened.
run for the hills!
i suck at strategy or realtime micromanagement games though
But yeah, sounds like you're pretty balanced.
(arena) fps & (sim) racing are my top genres, pure skill with lots of awareness, no rpg calculations that play for you, no luck
We're so offtopic now :D