CCleaner,Eng Sub a popular Windows app for system optimization and maintenance, has at some point been hijacked by hackers, potentially tricking millions of people into installing malware on their personal computers.
The threat was discovered by security researchers at Cisco Talos, who noticed that CCleaner was triggering their malware protection systems on Sept. 13. After looking into the problem, they realized that CCleaner version 5.33 came together with dangerous malware.
To make matters worse, we're not talking about downloading the app on some shady third-party site. Users who downloaded CCleaner directly from the official site, as recently as Sept. 11, were in fact downloading the infected version of the software.
SEE ALSO: Beware, Google Play Store gets caught distributing malwareAccording to Cisco Talos, only version 5.33 of the software is affected, and the more recent 5.34 version of CCleaner is malware-free. The malware doesn't do much damage by itself, but opens up the possibility for hackers to remotely install other malware, with potentially devastating consequences.
This was confirmed by the app's maker, Piriform, which was acquired by anti-virus software maker Avast in July. In a blog post, the company's VP of Products Paul Yung said that another one of it software products, CCleaner Cloud (version 1.07.3191), has also been affected.
These two apps were "illegally modified before (they were) released to the public," the post said. "The threat has now been resolved in the sense that the rogue server is down, other potential servers are out of the control of the attacker and we’re moving all existing CCleaner v5.33.6162 users to the latest version. Users of CCleaner Cloud version 1.07.3191 have received an automatic update."
UPDATE: Sept. 19, 2017, 9:31 a.m. UTC According to Piriform, only 32-bit versions of the software are affected.
It's currently unknown who's behind the hack, or how they managed to sneak malware into official CCleaner installs. "At this stage, we don’t want to speculate how the unauthorized code appeared in the CCleaner software, where the attack originated from, how long it was being prepared and who stood behind it," Yung said.
The CCleaner app is very popular -- Piriform claimed 2 billion CCleaner downloads and 5 million desktop installs weekly as of Nov. 2016. The infected version of the software was released on Aug. 15, meaning that millions of users are potentially at risk.
While Piriform claims that it was "able to disarm the threat before it was able to do any harm," it's unclear whether this is really the case. Users who'd had undetected malware on their computers for (potentially) a month could've had their data stolen or their systems compromised in other ways.
Unfortunately, there's very little users could've done to prevent this from happening, as the malware came with an official app, hosted on an official server. Everyone who installed CCleaner in the period from August 15 until now should update to the newest version of the software and run an anti-malware scan.
Topics Cybersecurity
The Steam Machine: What Went Wrong
Pacers vs. Knicks 2024 livestream: Watch NBA playoffs for free
Will Lestat return on 'Interview with the Vampire'?
Best headphones deal: save $50 on the new Beats Solo 4 wireless headphones
A hedgehog blown up 'like a beach ball' was popped in life
How to connect your AirPods to a computer or laptop
Conservationists are petitioning for a dugong emoji
Car tech firm iMotion shares slump 13% in Hong Kong debut · TechNode
Google's data center raises the stakes in this state's 'water wars'
A longshot federal recycling bill brings good ideas to the forefront
A hedgehog blown up 'like a beach ball' was popped in life
JD Logistics upgrades “next
Tottenham Hotspur vs. Man United 2024 livestream: Watch Women’s FA Cup Final for free
EHang delivers its first unpiloted passenger
How I met my partner on X/Twitter
Best Apple iPad Air deal: Save $150 at Amazon
Russell Crowe accepts Golden Globe with message about the Aussie fires
Wordle today: The answer and hints for May 14
Best Amazon deal: Save 20% on floral and botanical Lego sets
Douyin releases first fine
Some LGBTQ+ videos are being filtered on YouTube and vloggers want answersThis dictionary has found a brutal way to catch cheating studentsStephen Hawking has a message for Trump: Don't ignore climate changeWoman who fought off bathroom attacker has strong message for antiThis 'passiveTrump found a way to kill the future of public serviceIndia's Silicon Valley gets a seriously impressive vertical gardenDrake dropped a bunch of new music and we have A LOT to talk aboutStunt SUV pulls a 'Transformer' and gets around gridlockReviewers find Dave Chappelle still at the top of the game in new Netflix specialsFootballer thanks his wife and his girlfriend live on TV, backtracks awkwardlyBBC America is trying to keep 'Top Gear' alive with a new U.S. spinoffAfter bagging Shah Rukh Khan, Netflix nears deal with Aamir KhanRichard Hammond confirms motorbike crash rumours in blog postDrake dropped a bunch of new music and we have A LOT to talk aboutGet ready for all sorts of augmented reality wizardry on your iPhoneDisney's liveThe first American hoverboard fire deaths are now part of a federal investigationAfter bagging Shah Rukh Khan, Netflix nears deal with Aamir KhanQualcomm targets low Alibaba Cloud brings AI video generator EMO to Tongyi Qianwen app · TechNode Vivo X100S to feature new MediaTek Dimensity 9300+ chipset · TechNode ‘What? Things change!’ The ‘I’m a Mac guy’ actor, Justin Long, does new ad for Windows PCs Fat bear champ eats so many fish he can barely walk United States vs. Canada 2024 livestream: Watch T20 World Cup for free Air China announces purchase of 100 C919 aircraft for $10.8 billion · TechNode SpaceX has launched the world's first all Ticketmaster breach confirmed: What you need to know Xiaohongshu says reports of new funding based on $20 billion valuation are “untrue” · TechNode How to close apps on an iPhone (and why you shouldn't!) iPhone 16 Pro will break a world record with this new feature, according to new reports How to watch Jeff Bezos go to space on Blue Origin New Shepard Wordle today: The answer and hints for June 2 What extreme heat waves do to your body — and how to avoid heat stroke Wordle today: The answer and hints for June 3 Best Amazon Fire Tablet deals: Save up to 36% off Roaring Kitty reveals massive GME position in GameStop stock gamble Alibaba Cloud to support free training based on Llama 3 for a certain period · TechNode It's peak fat bear watching season, so tune in now A mama fat bear mauled another bear. Here's why.