“At this stage, we cannot state that the corporate machines could not be compromised, even though the attack was highly targeted.” “For corporate users, the decision may be different and will likely depend on corporate IT policies,” the company says in its latest blog post. Nevertheless, the company recommends that users immediately upgrade CCleaner to the latest version (now v5.35) and “use a quality antivirus product such as Avast Antivirus”. “We resolved this quickly and believe no harm was done to any of our users,” it said. In its initial security notification, Avast said that the “unauthorised modification of the CCleaner.exe binary resulted in an insertion of a two-stage backdoor capable of running code received from a remote IP address” on infected systems. We will not share your details with third parties. I have read and accept the privacy policy and terms and conditions and by submitting my email address I agree to receive the Business IT newsletter and receive special offers on behalf of Business IT, nextmedia and its valued partners. UPDATE: Avast has since acknowledged that the infected versions included an ‘advanced persistent threat’ (APT) that was programmed to deliver a second payload to a select group large technology and telecommunication companies.Īvast says the number of targets of the second payload was likely to be “in the order of hundreds” at least – and according to Cisco’s threat intelligence firm Talos, the targets included Cisco, Intel, Microsoft, Samsung, Sony, VMware, Akamai, HTC, Singtel, D-Link and VMware. No other Piriform products or CCleaner versions (including the later versions 5.34 and 5.35) were affected, the company said. Recent versions of Windows optimisation tool CCleaner have been compromised, the software’s owner Avast Piriform has admitted.ĬCleaner has had more than 2 billion downloads overall, although Avast estimates that 2.27 million people used the infected versions: CCleaner v and CCleaner Cloud v. Compromised version of the Windows optimisation app included a second payload targeting major tech companies.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |