Linked by Thom Holwerda on Tue 19th Sep 2017 09:58 UTC
Privacy, Security, Encryption

Talos recently observed a case where the download servers used by software vendor to distribute a legitimate software package were leveraged to deliver malware to unsuspecting victims. For a period of time, the legitimate signed version of CCleaner 5.33 being distributed by Avast also contained a multi-stage malware payload that rode on top of the installation of CCleaner. CCleaner boasted over 2 billion total downloads by November of 2016 with a growth rate of 5 million additional users per week. Given the potential damage that could be caused by a network of infected computers even a tiny fraction of this size we decided to move quickly. On September 13, 2017 Cisco Talos immediately notified Avast of our findings so that they could initiate appropriate response activities. The following sections will discuss the specific details regarding this attack.

Don't use registry cleaners. They serve no purpose.

Thread beginning with comment 649002
To view parent comment, click here.
To read all comments associated with this story, please click here.
RE: everything is broken
by vocivus on Tue 19th Sep 2017 14:26 UTC in reply to "everything is broken"
vocivus
Member since:
2010-03-13

Any OS that borks itself during an "upgrade" .. is fundamentally broken. I'm looking at *you* Ubuntu...

Reply Parent Score: 2

RE[2]: everything is broken
by Gone fishing on Fri 22nd Sep 2017 03:42 in reply to "RE: everything is broken"
Gone fishing Member since:
2006-02-22

Any OS that borks itself during an "upgrade" .. is fundamentally broken. I'm looking at *you* Ubuntu...


I've been using Ubuntu since Hoary or Breezy and haven't had an up grade problem since Dapper (6.04). I also administer numerous Ubuntu workstations and don't have this issue.

I'm calling bullshit on this one.

Edited 2017-09-22 03:49 UTC

Reply Parent Score: 1

RE[3]: everything is broken
by vocivus on Fri 22nd Sep 2017 15:05 in reply to "RE[2]: everything is broken"
vocivus Member since:
2010-03-13

Lucky you. I haven't had a successful upgrade yet. Fedora on the otherhand has been flawless.

Reply Parent Score: 2