cancel
Showing results for 
Search instead for 
Did you mean: 

PSA for CCleaner users!!

Amanda
Moderator

PSA for CCleaner users!!

Hackers Hid Backdoor In CCleaner Security App With 2 Billion Downloads -- 2.3 Million Infected

 

Read more:

https://www.forbes.com/sites/thomasbrewster/2017/09/18/ccleaner-cybersecurity-app-infected-with-back...

 

 

Tom's Hardware article link (less "junky"): http://www.tomshardware.com/news/avast-unknowingly-bundled-malware-ccleaner,35477.html   ---Thanks @C0RR0SIVE

 

 

Just uninstalled it from my phone, I used it as a quick way to uninstall apps and clear cache. Uninstalling from my PC as soon as I get home today!

~Amanda

 

17 REPLIES 17
BirdDog
Assistant Professor

Re: PSA for CCleaner users!!

Thanks Amanda! Luckily I didn't have the infected versions installed, hadn't updated it in awhile.

Amanda
Moderator

Re: PSA for CCleaner users!!

I used this for a very long time because I thought it was easier to just have a tool do for me what I could do in a few different built-in accessories for Windows. I'd rather do it all by hand than keep something I know might be comprimised again, especially with the threat of keyloggers and whatnot. 

MarkJFine
Associate Professor

Re: PSA for CCleaner users!!

Wow... Good to know.

 

Things like this is the single reason why I've avoided the temptation to use things like password utilities (like 1password) and such. That, and cloud-based things that make apps hand-off friendly.

 

All nice ideas, but as we know, that road is always paved with good intentions and someone's always out there looking for an exploit.


* Disclaimer: I am a HughesNet customer and not a HughesNet employee. All of my comments are my own and do not necessarily represent HughesNet in any way.
MarkJFine
Associate Professor

Re: PSA for CCleaner users!!

Massive kudos to ClamAV.

Untitled.jpeg


* Disclaimer: I am a HughesNet customer and not a HughesNet employee. All of my comments are my own and do not necessarily represent HughesNet in any way.
Amanda
Moderator

Re: PSA for CCleaner users!!

Thanks @C0RR0SIVE I just grabbed the link off twitter, didn't realize it had so much junk on it without adblock/ublock origin on. 

MarkJFine
Associate Professor

Re: PSA for CCleaner users!!

Have seen some reports where the malware reports to something in the 216.126.x.x range.
Would not surprise me if it's ServerCrate, which uses 216.126.224.0 - 216.126.239.255 in my spam ID list.

 


* Disclaimer: I am a HughesNet customer and not a HughesNet employee. All of my comments are my own and do not necessarily represent HughesNet in any way.
GabeU
Distinguished Professor IV

Re: PSA for CCleaner users!!

Wow!  I got really nervous as I have CCleaner on all three of my machines, and they all had version 5.33, as well.  It wasn't until I read that it was only concerning the 32 bit versions that I felt a little relief.  Still, I've made sure to have all of my AV/AM software, including Malwarebytes, up to date and have completed scans.  I also downloaded and ran deep scans with both the Malicious Software Removal Tool and the Safety Scanner from Microsoft (not that they would really pick it up, anyway).  

 

Just last month I was reading complaints and speculations on another board about CCleaner now being owned by Avast and how things may change.  This doesn't bode well.   


Ryzen 5 3400G | MSI B450M Pro-M2 MAX | 16GB Corsair Vengeance DDR4 3000 | XPG SX8200 Pro 512GB NVMe | Windows 10 Pro
MarkJFine
Associate Professor

Re: PSA for CCleaner users!!

Doesn't bode well for Avast, nor Symantec, whose certificates were compromised.


* Disclaimer: I am a HughesNet customer and not a HughesNet employee. All of my comments are my own and do not necessarily represent HughesNet in any way.