Popular software CCleaner infected with backdoor
Click here to post a comment for Popular software CCleaner infected with backdoor on our message forum
Pictus
I use the open source BleachBit.
https://www.bleachbit.org/features
Darkiee
Thanks for the info Hilbert.
+1
tsunami231
CCleaner version 5.33.6162 and CCleaner Cloud version 1.07.3191 those the only verison infected? i update CCleaner on my PC but never ever new build probably once few months? gona have to check and see when get access to my pc
I normal only d/l the portable version though for reason, the install has 3rd party stuff asked to be installed
Fyew-jit-tiv
BLEH!
I'm on the old 5.3. Should be OK 🙂
Aura89
http://static.tvtropes.org/pmwiki/pub/images/weirdalfoil_2322.jpg
Reddoguk
I update every time there is one so now i'm concerned. Currently running v5.34.6207 (64-bit) and running scans as i type this.
DarKSeeD
They stated only the 32 bit version was affected!
"We recently determined that older versions of our Piriform CCleaner v5.33.6162 and CCleaner Cloud v1.07.3191 had been compromised. We estimate that 2.27 million people used the affected software. We resolved this quickly and believe no harm was done to any of our users. This compromise only affected customers with the 32-bit version of the v5.33.6162 of CCleaner and the v1.07.3191 of CCleaner Cloud. No other Piriform or CCleaner products were affected. We encourage all users of the 32-bit version of CCleaner v5.33.6162 to download v5.34 here: download. We apologize and are taking extra measures to ensure this does not happen again."
http://www.piriform.com/news/release-announcements/2017/9/18/security-notification-for-ccleaner-v5336162-and-ccleaner-cloud-v1073191-for-32-bit-windows-users
tsunami231
Bansaku
I am glad I have been ignoring the update request for months! 😛
Darkiee
Luckily, don´t have that version on any of my pc´s. But will run scans when got idle time.
NewTRUMP Order
The Laughing Ma
Wow haven't used CCleaner since I jumped to Win 8 some two and a bit years ago. Used to always have some form of it or another installed on my computer prior to that.
tsunami231
alanm
Dont know why cc cleaner is seen as so unique, theres lot of good alternatives.
schmidtbag
Good thing I haven't really booted into Windows for extensive use in a couple months. I normally don't like tools like CCleaner but Windows has been becoming real tedious to clean up after.
What I really don't understand is why CCleaner updates so often. There's nothing that special about it to warrant so many updates.
WareTernal
https://www.piriform.com/ccleaner/version-history
The real question here is whether this came from within the organization. They stated the software was "illegally modified before it was released to the public" , so it seems someone has access to their servers and maybe their source.
I enjoy a good conspiracy theory, but really there is no mystery here. Piriform provides release notes with each version to tell you exactly what they updated. Try checking the version history. This should help you understand why the software is updated.
schmidtbag
Chillin
Is it so hard to source?
We recently determined that older versions of our Piriform CCleaner v5.33.6162 and CCleaner Cloud v1.07.3191 had been compromised. We estimate that 2.27 million people used the affected software. We resolved this quickly and believe no harm was done to any of our users. This compromise only affected customers with the 32-bit version of the v5.33.6162 of CCleaner and the v1.07.3191 of CCleaner Cloud. No other Piriform or CCleaner products were affected. We encourage all users of the 32-bit version of CCleaner v5.33.6162 to download v5.34 here: download. We apologize and are taking extra measures to ensure this does not happen again.
Issue Summary: Our new parent company, the security company Avast, determined on the 12th of September that the 32-bit version of our CCleaner v5.33.6162 and CCleaner Cloud v1.07.3191 products, which may have been used by up to 3% of our users, had been compromised in a sophisticated manner. Piriform CCleaner v5.33.6162 was released on the 15th of August, and a regularly scheduled update to CCleaner, without compromised code, was released on the 12th of September. CCleaner Cloud v1.07.3191 was released on the 24th of August, and updated with a version without compromised code on September 15. The compromise could cause the transmission of non-sensitive data (computer name, IP address, list of installed software, list of active software, list of network adapters) to a 3rd party computer server in the USA. We have no indications that any other data has been sent to the server. Working with US law enforcement, we caused this server to be shut down on the 15th of September before any known harm was done. It would have been an impediment to the law enforcement agency’s investigation to have gone public with this before the server was disabled and we completed our initial assessment. Between the 12th and the 15th, we took immediate action to make sure that our Piriform CCleaner v5.33.6162 and CCleaner Cloud v1.07.3191 users were safe - we worked with download sites to remove CCleaner v5.33.6162, we pushed out a notification to update CCleaner users from v5.33.6162 to v5.34, we automatically updated those where it was possible to do so, and we automatically updated CCleaner Cloud users from v1.07.3191 to 1.07.3214.
We are continuing to investigate how this compromise happened, who did it, and why. We are working with US law enforcement in their investigation. A more technical description of the issue is on our Piriform blog at: www.piriform.com/news/blog. Again, we sincerely apologize for this and are committed to making sure nothing similar happens again. We encourage any user of the 32-bit version of CCleaner v5.33.6162 to download the latest version of Piriform CCleaner found here: www.piriform.com/ccleaner/download/standard.
KissSh0t
Interesting, I've always blocked ccleaner from having access to the internet on having a hunch it would be used to collect data.