Thread Rating:
  • 0 Vote(s) - 0 Average
  • 1
  • 2
  • 3
  • 4
  • 5
Share Post: G+ Digg Delicious Reddit Facebook Twitter StumbleUpon
Malware found in ccleaner
#11
(09-18-2017 , 10:45 PM)tarekma7 Wrote: You are not allowed to view links. Register or Login to view.I am trying to remember why I didnot update my version

I have two apps that I download updates immediately after being available with no hesitation

I have an advice from dinosaur to wait for the update and not installing any update immediately

I just forget to update......= LUCK + Dinosaur07


Think again when using mass software, they are targeted by hackers as this kind of software is downloaded by millions of users, this is one of the reasons i just never use any free software or i use it with caution (for instance Aimp which was not updated on my pc from at least 3-4 months and is monitored by me). Under no circumstance i will never use any free AVs.
Smile
Reply
#12
it is  on mainstream news sites too. Not just tech sites-- You are not allowed to view links. Register or Login to view.


Threat actor compromised CCleaner infrastructure

Cisco Talos security researchers detected the tainted CCleaner app last week while performing beta testing of a new exploit detection technology.
Researchers identified a version of CCleaner 5.33 making calls to suspicious domains. While initially, this looked like another case where a user downloaded a fake, malicious CCleaner app, they later discovered that the CCleaner installer was downloaded from the official website and was signed using a valid digital certificate.
Cisco Talos believes that a threat actor might have compromised Avast's supply chain and used its digital certificate to replace the legitimate CCleaner v5.33 app on its website with one that also contained the Floxif trojan.
It is unclear if this threat actor breached Avast's systems without the company's knowledge, or the malicious code was added by "an insider with access to either the development or build environments within the organization."

You are not allowed to view links. Register or Login to view.
You are not allowed to view links. Register or Login to view. 
[/quote]
Reply
#13
Yes, News channels
Reply
#14
Nocomment
Reply
#15
(09-18-2017 , 11:12 PM)scolli23 Wrote: You are not allowed to view links. Register or Login to view.Nocomment

We will never know the answer but my guess would be that it would not have happened.
Reply
#16
i was in 5.32.61.29 so should be safe.thats why i dont like online activation system on first place they can catch anything
tester should also test some old version

its job of insider most likely Tongue
Reply
#17
Big thanks to daljeet and other posters.

Last night I got a notice from MBAM about a ccleaner.exe containing a "trojan"  WTF?  Updated it and notification went away

What wasn't clear is that only the 32-bit version was compromised 

AND the compromise results in the creation of Windows registry key HKLM\SOFTWARE\Piriform\Agomo

Apparently I lucked out since I run the 64-bit Pro version... but I wonder...?

Further info: You are not allowed to view links. Register or Login to view.
Reply
#18
Just at You are not allowed to view links. Register or Login to view. saw it in their headlines. so -- this is big news.
Reply


Forum Jump:


Users browsing this thread: 1 Guest(s)