Hackers Hid Backdoor In CCleaner Security App

black3dynamite

@scottalanmiller said in Hackers Hid Backdoor In CCleaner Security App:

There is an open source competitor now I think tht is supposed to be pretty good.

Is Bulk Crap Uninstaller that you are thinking of?

scottalanmiller

@black3dynamite said in Hackers Hid Backdoor In CCleaner Security App:

@scottalanmiller said in Hackers Hid Backdoor In CCleaner Security App:

There is an open source competitor now I think tht is supposed to be pretty good.

Is Bulk Crap Uninstaller that you are thinking of?

Not sure, but does not sound familiar.

coliver

https://arstechnica.com/information-technology/2017/09/ccleaner-malware-outbreak-is-much-worse-than-it-first-appeared/#p3

nadnerB

@coliver said in Hackers Hid Backdoor In CCleaner Security App:

https://arstechnica.com/information-technology/2017/09/ccleaner-malware-outbreak-is-much-worse-than-it-first-appeared/#p3

So much for “just remove the old version of Ccleaner. There’s nothing to worry about”.

Avast have just shot themselves in the foot in a very public way.

coliver

@nadnerb said in Hackers Hid Backdoor In CCleaner Security App:

@coliver said in Hackers Hid Backdoor In CCleaner Security App:

https://arstechnica.com/information-technology/2017/09/ccleaner-malware-outbreak-is-much-worse-than-it-first-appeared/#p3

So much for “just remove the old version of Ccleaner. There’s nothing to worry about”.

Avast have just shit themselves in the foot in a very public way.

Yep the poo they were slinging at Cisco landed squarely at their own feet.

marcinozga

And since when CCleaner is a security app? Original name was crap cleaner if I remember correctly, and that's what it does, cleans crap. How does that relate to security?

DustinB3403

@marcinozga said in Hackers Hid Backdoor In CCleaner Security App:

And since when CCleaner is a security app? Original name was crap cleaner if I remember correctly, and that's what it does, cleans crap. How does that relate to security?

Most of the things it was removing are security issues, viruses, malware, keylogger etc. It's always been a security appliance. Just because it performed janitorial duties as well (like removing temp files) doesn't mean it's not a security appliance.

coliver

@marcinozga said in Hackers Hid Backdoor In CCleaner Security App:

And since when CCleaner is a security app? Original name was crap cleaner if I remember correctly, and that's what it does, cleans crap. How does that relate to security?

It's owned by Avast, a security company. Since when does a security company provide malicious software? Then when they are found out try and cover up the tool and the extent of the infection?

DustinB3403

@coliver said in Hackers Hid Backdoor In CCleaner Security App:

@marcinozga said in Hackers Hid Backdoor In CCleaner Security App:

And since when CCleaner is a security app? Original name was crap cleaner if I remember correctly, and that's what it does, cleans crap. How does that relate to security?

It's owned by Avast, a security company. Since when does a security company provide malicious software? Then when they are found out try and cover up the tool and the extent of the infection?

Avast recently purchases Piriform (the original developers of CCleaner).

coliver

@dustinb3403 said in Hackers Hid Backdoor In CCleaner Security App:

@coliver said in Hackers Hid Backdoor In CCleaner Security App:

@marcinozga said in Hackers Hid Backdoor In CCleaner Security App:

And since when CCleaner is a security app? Original name was crap cleaner if I remember correctly, and that's what it does, cleans crap. How does that relate to security?

It's owned by Avast, a security company. Since when does a security company provide malicious software? Then when they are found out try and cover up the tool and the extent of the infection?

Avast recently purchases Piriform (the original developers of CCleaner).

Correct. So Avast transversely owns CCleaner.

DustinB3403

@coliver said in Hackers Hid Backdoor In CCleaner Security App:

@dustinb3403 said in Hackers Hid Backdoor In CCleaner Security App:

@coliver said in Hackers Hid Backdoor In CCleaner Security App:

@marcinozga said in Hackers Hid Backdoor In CCleaner Security App:

And since when CCleaner is a security app? Original name was crap cleaner if I remember correctly, and that's what it does, cleans crap. How does that relate to security?

It's owned by Avast, a security company. Since when does a security company provide malicious software? Then when they are found out try and cover up the tool and the extent of the infection?

Avast recently purchases Piriform (the original developers of CCleaner).

Correct. So Avast transversely owns CCleaner.

Did avast own Piriform and CCleaner at the time of this breach? (I haven't looked that up)

coliver

@dustinb3403 said in Hackers Hid Backdoor In CCleaner Security App:

@coliver said in Hackers Hid Backdoor In CCleaner Security App:

@dustinb3403 said in Hackers Hid Backdoor In CCleaner Security App:

@coliver said in Hackers Hid Backdoor In CCleaner Security App:

@marcinozga said in Hackers Hid Backdoor In CCleaner Security App:

And since when CCleaner is a security app? Original name was crap cleaner if I remember correctly, and that's what it does, cleans crap. How does that relate to security?

It's owned by Avast, a security company. Since when does a security company provide malicious software? Then when they are found out try and cover up the tool and the extent of the infection?

Avast recently purchases Piriform (the original developers of CCleaner).

Correct. So Avast transversely owns CCleaner.

Did avast own Piriform and CCleaner at the time of this breach? (I haven't looked that up)

Yes, the breach was live in August-September. Avast purchased Piriform in July.

marcinozga

@dustinb3403 said in Hackers Hid Backdoor In CCleaner Security App:

Most of the things it was removing are security issues, viruses, malware, keylogger etc. It's always been a security appliance.

It never did any of that. None. It still doesn't remove any of the above. Just because some malicious software can sit in temp folder, it doesn't make an app that cleans temp files a security app.

DustinB3403

@coliver said in Hackers Hid Backdoor In CCleaner Security App:

@dustinb3403 said in Hackers Hid Backdoor In CCleaner Security App:

@coliver said in Hackers Hid Backdoor In CCleaner Security App:

@dustinb3403 said in Hackers Hid Backdoor In CCleaner Security App:

@coliver said in Hackers Hid Backdoor In CCleaner Security App:

@marcinozga said in Hackers Hid Backdoor In CCleaner Security App:

And since when CCleaner is a security app? Original name was crap cleaner if I remember correctly, and that's what it does, cleans crap. How does that relate to security?

It's owned by Avast, a security company. Since when does a security company provide malicious software? Then when they are found out try and cover up the tool and the extent of the infection?

Avast recently purchases Piriform (the original developers of CCleaner).

Correct. So Avast transversely owns CCleaner.

Did avast own Piriform and CCleaner at the time of this breach? (I haven't looked that up)

Yes, the breach was live in August-September. Avast purchased Piriform in July.

Than Avast is squarely to blame for it. Rather than having a leg to stand on of "This happened before/during we bought Piriform. . ."

Still no hash entries on ccleaner's website. I guess Avast doesn't care about security after all.

coliver

@marcinozga said in Hackers Hid Backdoor In CCleaner Security App:

@dustinb3403 said in Hackers Hid Backdoor In CCleaner Security App:

Most of the things it was removing are security issues, viruses, malware, keylogger etc. It's always been a security appliance.

It never did any of that. None. It still doesn't remove any of the above. Just because some malicious software can sit in temp folder, it doesn't make an app that cleans temp files a security app.

But again it's not the app. It's the security company that backs the app. Not sure why what the app does matters in this instance. If Microsoft was hosting malicious software on their website we'd be touching on that too. Avast has lost face in this issue and will have a hard time earning back trust of knowledgeable consumers.

marcinozga

@coliver "Hackers Hid Backdoor In CCleaner Security App"

Avast never really had any face to begin with, their av products were always junk.

scottalanmiller

@coliver said in Hackers Hid Backdoor In CCleaner Security App:

@marcinozga said in Hackers Hid Backdoor In CCleaner Security App:

@dustinb3403 said in Hackers Hid Backdoor In CCleaner Security App:

Most of the things it was removing are security issues, viruses, malware, keylogger etc. It's always been a security appliance.

It never did any of that. None. It still doesn't remove any of the above. Just because some malicious software can sit in temp folder, it doesn't make an app that cleans temp files a security app.

But again it's not the app. It's the security company that backs the app. Not sure why what the app does matters in this instance. If Microsoft was hosting malicious software on their website we'd be touching on that too. Avast has lost face in this issue and will have a hard time earning back trust of knowledgeable consumers.

Exactly

scottalanmiller

@dustinb3403 said in Hackers Hid Backdoor In CCleaner Security App:

@coliver said in Hackers Hid Backdoor In CCleaner Security App:

@dustinb3403 said in Hackers Hid Backdoor In CCleaner Security App:

@coliver said in Hackers Hid Backdoor In CCleaner Security App:

@dustinb3403 said in Hackers Hid Backdoor In CCleaner Security App:

@coliver said in Hackers Hid Backdoor In CCleaner Security App:

@marcinozga said in Hackers Hid Backdoor In CCleaner Security App:

And since when CCleaner is a security app? Original name was crap cleaner if I remember correctly, and that's what it does, cleans crap. How does that relate to security?

It's owned by Avast, a security company. Since when does a security company provide malicious software? Then when they are found out try and cover up the tool and the extent of the infection?

Avast recently purchases Piriform (the original developers of CCleaner).

Correct. So Avast transversely owns CCleaner.

Did avast own Piriform and CCleaner at the time of this breach? (I haven't looked that up)

Yes, the breach was live in August-September. Avast purchased Piriform in July.

Than Avast is squarely to blame for it. Rather than having a leg to stand on of "This happened before/during we bought Piriform. . ."

Still no hash entries on ccleaner's website. I guess Avast doesn't care about security after all.

Right? How simple is this. Any random open source project has that kind of stuff. How did Piriform miss that?