CCleaner compromised better check your PCPiriform, makers of the popular file cleaner CCleaner, confirmed on Monday 1.The hackers compromised two versions of the CCleaner in the attack which have been used by up to 3 of the companys user base.The affected versions are CCleaner 5.CCleaner Cloud 1.According to Piriform, only the 3.The company asks users to update their version of the program to the latest available release if that has not been done already.The latest release version of CCleaner is version 5.CCleaner 5. 3. 3.August 1. 5th, 2.September 1. 2, 2.CCleaner Cloud 1.August 2. 4th, 2.September 1. 5th, 2.Security researchers of Ciscos Talos Group revealed details about the successful supply chain attack.Talos Group informed Avast, the parent company of Piriform, about the situation.Talos Groupidentified a specific executable during tests of the companys new exploit detection tool which came from the CCleaner 5.CCleaner download servers.The download executable was signed with a valid Piriform signature.The installer contained a malicious payload that featured a Domain Generation Algorithm as well as hardcoded Command and Control functionality.The Talos researchers concluded that the malicious payload was distributed between the release of version 5.August 1. 5th, 2.September 1. 2th, 2.The researchers think it is likely that an external attacker compromised a portion of Piriforms development or build environment, and used the access to insert the malware into the CCleaner build.Another option that the researchers consider is that an insider included the malicious code.CCleaner users who want to make sure that the compromised version is not still on their system may want to scan it on Virustotal, or scan it with Clam.AV, as it the only antivirus software that detects the threat right now.You can download the free Clam.AV from this website.The malicious payload creates the Registry key HKLMSOFTWAREPiriformAgomo and used it to store various information.Piriform issued a statement on September 1.According to that statement, non sensitive data may have been transmitted to a server in the United States of America.The compromise could cause the transmission of non sensitive data computer name, IP address, list of installed software, list of active software, list of network adapters to a 3rd party computer server in the USA.We have no indications that any other data has been sent to the server.Paul Yung, the companys VP of products, published a technical assessment of the attack on the company blog as well.The only suggestion that Piriform has is to update to the most recent version.Closing Words. The compromised versions of CCleaner and CCleaner Cloud were distributed for nearly a month.With over 2. 0 million downloads per month, and the updates, that is a high number of PCs that have been affected by this.Summary. Article Name.CCleaner compromised better check your PCDescription.Piriform, makers of the popular file cleaner CCleaner, confirmed on Monday 1. Pc Pro Evolution Soccer 2008 Cracked there. Author. Martin Brinkmann.Publisher. Ghacks Technology News.Setup Av Ack Avast Antivirus' title='Setup Av Ack Avast Antivirus' />Piriform, makers of the popular file cleaner CCleaner, confirmed on Monday 18th, 2017 that hackers managed to attack the companys computer network successfully.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |