Hijacked the security software sparks warning

Reuters

A security company issued a warning after the software been compromised by malicious hackers.

Piriform said users a trap version of its CCleaner software was made available in the month of August and September.

Millions of people use the program CCleaner to remove unwanted Android phones and Windows Pcs.

Piriform owner, Avast, said that he was able to remove the compromise version before any damage was done.Cleaning

If the hacker was able to subvert the software had not been identified, you could have taken in the remote devices of 2.27 million people who had downloaded the version 5.33 of the program, said Paul Yung, from Piriform.

Mr Yung said that the company had noticed some “suspicious activity”, on the 12th of September, which led to the discovery of version 5.33 was “illegally modified” before it was made available to the public.

The modified version is available for about a month.

The changes made to infected machines to contact some of the recently registered web domains – a tactic often used by cyber-thieves, who then use this location to install additional malicious software on compromised devices.

The impact of the infection was limited, said Mr. Yung, why are relatively few people automatically updated the CCleaner software.

Anyone who downloaded the compromised version of CCleaner has now been moved to the last uninfected version, he said.

“To the best of our knowledge, we were able to disarm the threat before he was able to do nothing wrong,” said Mr. Yung.

He apologized for the inconvenience that had been caused and said the company’s investigation of the attack has been “in progress”.

Separate analysis by the Cisco Talos security group suggests who was behind the attack, CCleaner was able to get access to the server from Piriform used to accommodate the new versions of the software.

Talos researcher Craig Williams has told the Reuters news agency that the attack was “sophisticated”, because he had appointed a reliable server and tried to make the trap version seem legitimate.

“There is nothing that a user might have noticed,” he said.