Hackers Hid Backdoor In CCleaner. (Update Your CCleaner Now)

[escrow.ms]

Users of Avast-owned security application CCleaner for Windows have been advised to update their software immediately, after researchers discovered criminal hackers had installed a backdoor in the tool. The tainted application allows for download of further malware, be it ransomware or keyloggers, with fears millions are affected. According to Avast's own figures, 2.27 million ran the affected software, though the company said users should not panic.

The affected app, CCleaner, is a maintenance and file clean-up software run by a subsidiary of anti-virus giant Avast. It has 2 billion downloads and claims to be getting 5 million extra a week, making the threat particularly severe, researchers at Cisco Talos warned. Comparing it to the NotPetya ransomware outbreak, which spread after a Ukrainian accounting app was infected, the researchers discovered the threat on September 13 after CCleaner 5.33 caused Talos systems to flag malicious activity.

Further investigation found the CCleaner download server was hosting the backdoored app as far back as September 11. Talos warned in a blog Monday that the affected version was released on August 15, but on September 12 an untainted version 5.34 was released. For weeks then, the malware was spreading inside supposedly-legitimate security software.
https://www.forbes.com/sites/thomasbrewster/2017/09/18/ccleaner-cybersecurity-app-infected-with-backdoor/

[anelenaniku]

Thank you for sharing this with us 
Security is not existing , today is CCleaner tomorrow something else and we may have no idea for its backdoor until is too late

[escrow.ms]

I just hope that they didn't stole passwords and other stuff. It was hosted for month and It can be more serious.

[GG04]

Thank you for this advise, I am using Ccleaner, I always update security software as soon as they are out, lucky enough, I ve been out for a week or so.

[escrow.ms]

https://www.tomsguide.com/us/ccleaner-utility-malware-infected,news-25851.html

[carlisle1]

https://www.tomsguide.com/us/ccleaner-utility-malware-infected,news-25851.html

thank you for sharing mate, I guess I need to double check the version of ccleaner inside my laptop, this issue should be taking care accordingly
its our security and everything that we have inside the web, maybe temporarily removing this apps inside my unit and use it again after further notice
that its already safe using it.

[0verseer]

Didn't use my CCleaner often, my version is always outdated. Guess only who download or update to ver 5.33 affect by this.

[Merovius]

Wow, this is an important update! I do have CCleaner, but after checking my system I discovered that it was an older version (5.03) that was likely downloaded before this backdoor was installed. I have uninstalled this older version and can download the new one now that the hack/exploit has been patched.

[ConfirmTX]

Thanks for the update. It seems like our systems were affected.

[GayOfThrones]

That's really scary. I've been using it in the past. When has the infection occurred?

[escrow.ms]

That's really scary. I've been using it in the past. When has the infection occurred?

According to Talos CCleaner download server was hosting the backdoored app as far back as September 11

[European Central Bank]

Thank you for this advise, I am using Ccleaner, I always update security software as soon as they are out, lucky enough, I ve been out for a week or so.

if something works then i don't update it. my version is older than the compromised one. it'll do for me.

[Vod]

if something works then i don't update it.

You are still running MSDOS 6.22 and Windows 3.1?  

(Seriously though - thanks to escrow.ms for the warning)