CCleaner Got Hacked - Now What?

Popular PC cleanup tool CCleaner got hacked, and a version was available for download for several weeks with a malware bundle installed. 

While that is of course disappointing, the "good news" is that the malware did not appear to do anything *really* bad (at least for now). It did attempt to send system information to an as yet unidentified IP address (for some future mischief?).

From Piriform, the makers of CCleaner:
Again, we would like to apologize for any inconvenience this incident could have caused to our clients; we are taking detailed steps internally so that this does not happen again, and to ensure your security while using any of our Piriform products. Users of our cloud version have received an automated update. For all other users, if you have not already done so, we encourage you to update your CCleaner software to version 5.34 or higher, the latest version is available for download here.
Removing CCleaner and/or updating the latest "clean" version does not remove any malware. I would also run a malware scanner such as Malwarebytes Anti Malware.
Piriform Blog

No comments :