![]() ![]() Malware collects data from compromised systemsĪt first, experts discovered only the first stage payload. It appears that the malware injected into the PC optimization software (known as Nyetya or Floxif Trojan) could transfer the name of the computer, list of installed software or Windows updates, running processes, MAC addresses of first three network adapters and even more data about the computer to a remote server. The company took actions to take down the server that was communicating with the backdoor. It appears that these versions were illegally modified to set up backdoors on users’ computers. The VP apologized and stated that hackers managed to compromise CCleaner and CCleaner Cloud version. On September 18, 2017, Paul Yung, the vice president of Piriform, announced the hack in a troubling blog post. It appears that hackers compromised company’s servers to inject malware into the legitimate version of the PC optimization tool, which successfully landed the malicious component on more than 2.27 million computers worldwide. Sadly, the company recently experienced something very unpleasant and what is publicly known as “supply-chain attack.” It is a completely legitimate system maintenance tool with a spotless reputation. Piriform told BleepingComputer that it is in talks with Microsoft to stop its program being flagged by Defender, which is also flagging other Piriform software such as Recuva.CCleaner hack affected millions of computers worldwideĬCleaner by Piriform is a top-rated PC optimization software trusted by billions (not millions!) of users worldwide. Only the free version of CCleaner is being identified as a PUA as it contains the bundled software. In Microsoft's entry on how it identifies malware and potentially unwanted applications, it notes that PUAs are not malware but software must not make misleading claims about a device's health, files, or registry entries. Microsoft previously stated that it does not support registry cleaners, advising that such programs should not be used. "While the CCleaner installers do provide an option to opt out, some users can easily inadvertently install these bundled applications." "While the bundled applications themselves are legitimate, bundling of software, especially products from other providers, can result in unexpected software activity that can negatively impact user experiences," states the notice. In a new threat entry, the Redmond firm has classified CCleaner as a PUA. It seems Microsoft has taken exception to the bundling of these programs. ![]() You can download CCleaner here and see similar alternatives.īack in 2017, Piriform, the UK-based firm behind CCleaner, was acquired by Avast for $1.3 billion, which has led to other programs being bundled in with the app, including Avast Free Antivirus, AVG Antivirus Free, Google Chrome and Google Toolbar. It also features a registry scanner for invalid references. Why it matters: Are you using the free version of CCleaner? If so, you'll probably notice that Windows Defender is now flagging the junk file remover as a Potentially Unwanted Application (PUA) after Microsoft recently updated its antivirus program.ĬCleaner optimizes a system by removing unused and temporary files, thereby making it faster and freeing up storage space. ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |