Computer Hope
Software => Computer software => Topic started by: Salmon Trout on September 18, 2017, 12:53:40 PM
-
According to Bleeping Computer, CCleaner has been infected with malware for the past month. Version 5.33 of the CCleaner app offered for download between August 15 and September 12 was modified to include the Floxif malware.
https://www.bleepingcomputer.com/news/security/ccleaner-compromised-to-distribute-malware-for-almost-a-month/
-
Approx 2.5 million now have this on their PC...
-
Approx 2.5 million now have this on their PC...
(https://encrypted-tbn0.gstatic.com/images?q=tbn:ANd9GcThN6zWw_hRhfseIrxQz8j6T99bFIKTTsb8w6pf4eCx_iWoO9_f)
-
Never knew til today they were bought by Avast...
-
Never knew til today they were bought by Avast...
Now you tell me! :'(
Why was not everybody told about this?
-
This just made me check my CCleaner version since I recently downloaded it for my duplicate file problem on external hard drives to manually clean up duplicates of same date/time stamp in a wide variety of folders.
I scanned it before using it the other day and no problems. Just scanned again now and still no problems. They have for download v5.34 and I am using Version 5.34.6207 and Malwarebytes didnt find any problems with it. So I guess I got VERY LUCKY in not getting it a few days sooner for my external hard drive mess with duplicate files. However, I always scan installers both before and after install to make sure that nothing nasty slipped in so I'd hope that Malwarebytes would have detected the 5.33 having this issue to avoid infection and maybe its just the people who trust installers too much to be clean getting nabbed by this infection. :-\
https://www.piriform.com/ccleaner/download/standard
-
The powers that be stated that most scanners would not have detected the malware package...
-
It is also somewhat silly to rely on an AV or scanner program to verify a known-suspicious file as clean.
I haven't used CCleaner for a couple years- It doesn't seem to do much that isn't handled beyond the built in Disk Cleanup, and that which it does usually only amount to less then a megabyte of saved space, which might have mattered on an HDD back when t hey used to be called "Winchester drives" but not so much nowadays.
-
"Winchester" ...heee...Thats when a Mg was a Mg....
-
The malware in CCleaner is not detected by anti-virus programs as it is signed with a trusted certificate.
-
I am using a Kaspersky, no malware has been detected so far.
And, don't forget, it only effects v5.33 and only the 32bit one.
-
Is version "v5.34.6207" safe, as I may need to update?
-
And, don't forget, it only effects v5.33 and only the 32bit one.
Correct - just the 32 bit version of that release.
-
Yes it is, but better yet is the v5.35 version, complete with new digital cert.
-
I have been using ccleaner for a few years now and have never had a problem with it. How does the virus show up and what are the unresponsive effects?
-
only v5.33 was infected, removing it and getting the latest version from here https://www.piriform.com/ccleaner/builds is all you need to do.
-
How does the virus show up and what are the unresponsive effects?
Follow the link in the first post.
-
Seems like I also avoided the issue.. from reading it seems limited to 32 bit as well. Will be uninstalling now as it has served its purpose.