Malware discovered in CCleaner put millions of users at risk2017-09-19 15:58 by Daniela
Tags: malware, CCleaner
The popular PC cleanup tool, CCleaner, has been hacked. Its users have been advised to update their software immediately, after researchers discovered criminal hackers had installed a backdoor in certain versions of the tool. Anyone who downloaded or updated the software between mid-August to mid-September also downloaded malware without realizing it.
"We confirmed that this malicious version of CCleaner was being hosted directly on CCleaner's download server as recently as September 11, 2017," the researchers wrote. "We have no indications that any other data has been sent to the server."
"Working with US law enforcement, we caused this server to be shut down on the 15th of September before any known harm was done. It would have been an impediment to the law enforcement agency's investigation to have gone public with this before the server was disabled and we completed our initial assessment."
CCleaner was created by Piriform, which was acquired by antivirus company Avast only in July. It has 2 billion downloads and claims to be getting 5 million extra a week, making the threat particularly severe, researchers at Cisco Talos warned.
Read more -here-