Popular system maintenance tool CCleaner software has been compromised by a serious malware infection. According to security outfit Cisco Talos, if you downloaded CCleaner version 5.33 from Avast (or used CCleaner Cloud version 1.07.3191), then it was blighted with a multi-stage malware payload.The security firm conjecture that an external attacker compromised the program’s development.
CCleaner is the main product made by London’s Piriform, which was bought in July by Prague-based Avast, one of the world’s largest computer security vendors. It is estimated that 130 million people used CCleaner.
The malicious code in question is a two-stage backdoor which hooks up to a command and control server, capable of running code transmitted from a remote PC. Another worrying point was that this infection apparently went undetected by the vast majority of .
The good news is that the infected version of the software has already been pulled down, and according to Piriform, the developer of CCleaner. Users who use the cloud version of CCleaner software have already received an automatic update to remove the exploit. Only the cloud version could be updated automatically to remove the bad code. The nature of the attack code suggests that the hacker won access to a machine used to create CCleaner.
Meanwhile, if you are running CCleaner v5.33, you need to update to the latest version of the program immediately.
- Even the best laptops need a good antivirus to defend against malware