Bitcoin Forum
November 01, 2024, 04:23:53 PM *
News: Bitcoin Pumpkin Carving Contest
 
   Home   Help Search Login Register More  
Pages: [1]
  Print  
Author Topic: Hackers Hid Backdoor In CCleaner. (Update Your CCleaner Now)  (Read 397 times)
escrow.ms (OP)
Legendary
*
Offline Offline

Activity: 1274
Merit: 1004


View Profile
September 18, 2017, 10:57:01 AM
 #1

Users of Avast-owned security application CCleaner for Windows have been advised to update their software immediately, after researchers discovered criminal hackers had installed a backdoor in the tool. The tainted application allows for download of further malware, be it ransomware or keyloggers, with fears millions are affected. According to Avast's own figures, 2.27 million ran the affected software, though the company said users should not panic.

The affected app, CCleaner, is a maintenance and file clean-up software run by a subsidiary of anti-virus giant Avast. It has 2 billion downloads and claims to be getting 5 million extra a week, making the threat particularly severe, researchers at Cisco Talos warned. Comparing it to the NotPetya ransomware outbreak, which spread after a Ukrainian accounting app was infected, the researchers discovered the threat on September 13 after CCleaner 5.33 caused Talos systems to flag malicious activity.

Further investigation found the CCleaner download server was hosting the backdoored app as far back as September 11. Talos warned in a blog Monday that the affected version was released on August 15, but on September 12 an untainted version 5.34 was released. For weeks then, the malware was spreading inside supposedly-legitimate security software.
https://www.forbes.com/sites/thomasbrewster/2017/09/18/ccleaner-cybersecurity-app-infected-with-backdoor/
anelenaniku
Full Member
***
Offline Offline

Activity: 136
Merit: 100


View Profile
September 18, 2017, 11:08:42 AM
 #2

Thank you for sharing this with us  Shocked
Security is not existing , today is CCleaner tomorrow something else and we may have no idea for its backdoor until is too late
escrow.ms (OP)
Legendary
*
Offline Offline

Activity: 1274
Merit: 1004


View Profile
September 18, 2017, 11:25:49 AM
 #3

I just hope that they didn't stole passwords and other stuff. It was hosted for month and It can be more serious.
GG04
Newbie
*
Offline Offline

Activity: 6
Merit: 0


View Profile
September 18, 2017, 11:33:39 AM
 #4

Thank you for this advise, I am using Ccleaner, I always update security software as soon as they are out, lucky enough, I ve been out for a week or so.
escrow.ms (OP)
Legendary
*
Offline Offline

Activity: 1274
Merit: 1004


View Profile
September 18, 2017, 03:25:56 PM
 #5

https://www.tomsguide.com/us/ccleaner-utility-malware-infected,news-25851.html
carlisle1
Hero Member
*****
Offline Offline

Activity: 2744
Merit: 541

Campaign Management?"Hhampuz" is the Man


View Profile
September 18, 2017, 04:01:54 PM
 #6

thank you for sharing mate, I guess I need to double check the version of ccleaner inside my laptop, this issue should be taking care accordingly
its our security and everything that we have inside the web, maybe temporarily removing this apps inside my unit and use it again after further notice
that its already safe using it.
0verseer
Full Member
***
Offline Offline

Activity: 480
Merit: 106


View Profile
September 18, 2017, 04:16:01 PM
 #7

Didn't use my CCleaner often, my version is always outdated. Guess only who download or update to ver 5.33 affect by this.
Merovius
Member
**
Offline Offline

Activity: 89
Merit: 10


View Profile WWW
September 18, 2017, 04:44:05 PM
 #8

Wow, this is an important update! I do have CCleaner, but after checking my system I discovered that it was an older version (5.03) that was likely downloaded before this backdoor was installed. I have uninstalled this older version and can download the new one now that the hack/exploit has been patched.
ConfirmTX
Member
**
Offline Offline

Activity: 84
Merit: 10


View Profile WWW
September 18, 2017, 05:59:43 PM
 #9

Thanks for the update. It seems like our systems were affected. Cry

https://confirmtx.com Bitcoin Accelerator
GayOfThrones
Full Member
***
Offline Offline

Activity: 479
Merit: 103



View Profile
September 18, 2017, 09:12:48 PM
 #10

That's really scary. I've been using it in the past. When has the infection occurred?

⚪ Byteball          I T   J U S T   W O R K S .  
Sending Crypto to Email   -   Risk-Free Conditional Smart Payments   -   ICO Platform with KYC
ANN THREAD                  TELEGRAM                     TWITTER                  MEDIUM                  SLACK                  REDDIT
escrow.ms (OP)
Legendary
*
Offline Offline

Activity: 1274
Merit: 1004


View Profile
September 19, 2017, 09:57:09 AM
 #11

That's really scary. I've been using it in the past. When has the infection occurred?
According to Talos CCleaner download server was hosting the backdoored app as far back as September 11
European Central Bank
Legendary
*
Offline Offline

Activity: 1288
Merit: 1087



View Profile
September 19, 2017, 10:08:20 AM
 #12

Thank you for this advise, I am using Ccleaner, I always update security software as soon as they are out, lucky enough, I ve been out for a week or so.

if something works then i don't update it. my version is older than the compromised one. it'll do for me.
Vod
Legendary
*
Offline Offline

Activity: 3878
Merit: 3163


Licking my boob since 1970


View Profile WWW
September 19, 2017, 01:03:40 PM
 #13

if something works then i don't update it.

You are still running MSDOS 6.22 and Windows 3.1?   Wink

(Seriously though - thanks to escrow.ms for the warning)

I post for interest - not signature spam.
https://elon.report - new B.P.I.P. Reports!
https://vod.fan - fast/free image sharing - coming Nov
Pages: [1]
  Print  
 
Jump to:  

Powered by MySQL Powered by PHP Powered by SMF 1.1.19 | SMF © 2006-2009, Simple Machines Valid XHTML 1.0! Valid CSS!