Crap Cleaner was hacked, update now (Don't Panic?)

Discussion in 'PC Hardware, Software and Displays' started by Babel-17, Sep 21, 2017.

  1. Babel-17

    Veteran Regular

    Joined:
    Apr 24, 2002
    Messages:
    1,004
    Likes Received:
    245
    http://fortune.com/2017/09/18/ccleaner-hack-what-you-should-know/
    http://time.com/4946576/ccleaner-malware-hack/
    https://it.slashdot.org/story/17/09...ree-windows-application-infected-with-malware

    https://blog.avast.com/update-to-the-ccleaner-5.33.6162-security-incident


    https://blog.avast.com/progress-on-ccleaner-investigation


    Large technology and telecommunications companies were targeted

     
  2. Babel-17

    Veteran Regular

    Joined:
    Apr 24, 2002
    Messages:
    1,004
    Likes Received:
    245
  3. Bludd

    Bludd Experiencing A Significant Gravitas Shortfall
    Veteran

    Joined:
    Oct 26, 2003
    Messages:
    3,247
    Likes Received:
    811
    Location:
    Funny, It Worked Last Time...
    Yeah, you can delete the 32 bit exe on 64 bit os and the software will still work, though there's a UAC elevation scheduled task which probably won't run if you delete the exe.

    Still it is a very concerning issue and I expect Piriform to revise their internal routines
     
  4. Babel-17

    Veteran Regular

    Joined:
    Apr 24, 2002
    Messages:
    1,004
    Likes Received:
    245
    https://www.bleepingcomputer.com/ho...dent-what-you-need-to-know-and-how-to-remove/
     
  5. Grall

    Grall Invisible Member
    Legend

    Joined:
    Apr 14, 2002
    Messages:
    10,801
    Likes Received:
    2,172
    Location:
    La-la land
    I would say that this is why you cryptographically sign your installation packages, so shit like this can't happen.

    Considering that CCleaner's owners are in the computer securityware industry (or so I recall reading anyway), I'm fucking surprised they're not doing this already.
     
    hoom likes this.
  6. Otto Dafe

    Regular

    Joined:
    Aug 11, 2005
    Messages:
    400
    Likes Received:
    59
    Apparently the infected installer was signed.
     
  7. Grall

    Grall Invisible Member
    Legend

    Joined:
    Apr 14, 2002
    Messages:
    10,801
    Likes Received:
    2,172
    Location:
    La-la land
    Ok, so then hold on better to your crypto keys so badguys can't modify your install packages and then sign their payload with your keys.
     
Loading...

Share This Page

  • About Us

    Beyond3D has been around for over a decade and prides itself on being the best place on the web for in-depth, technically-driven discussion and analysis of 3D graphics hardware. If you love pixels and transistors, you've come to the right place!

    Beyond3D is proudly published by GPU Tools Ltd.
Loading...