Unsolved
3 Apprentice
•
15.2K Posts
0
598
Avast: Hackers breached internal network - aimed at compromising CCleaner - via compromised VPN profile
Czech cyber-security software maker Avast disclosed today a security breach that impacted its internal network.
In a statement published today, the company said it believed the attack's purpose was to insert malware into the CCleaner software, similar to the infamous CCleaner 2017 incident.
https://blog.avast.com/ccleaner-fights-off-cyberespionage-attempt-abiss
(With acknowledgements to posts at Wilders...)
speedstep
8 Wizard
8 Wizard
•
47K Posts
0
October 21st, 2019 09:00
ATA stands for Microsoft Advanced Threat Analytics
https://docs.microsoft.com/en-us/advanced-threat-analytics/what-is-ata
Avast also changed the digital certificate it was using to sign CCleaner updates. The new update was signed with a new digital certificate, and the company revoked the previous certificate used to sign older CCleaner releases. It did so to prevent attackers from using it to sign fake CCleaner updates, in case the hackers managed to get their hands on the old certificate during the recent intrusion. The 2017 CCleaner hack happened before Avast bought Piriform.
Realtek USB and Audio drivers had similar problem which is why Realtek audio becomes broken after every windows feature update.
RoHe
10 Elder
10 Elder
•
43.5K Posts
0
October 21st, 2019 13:00
Doesn't say if they checked for malware in any of their other software like Speccy, which can be downloaded from the ccleaner.com site for free. Obviously ccleaner has a much wider distribution base but still...
Do we know if they use the same security certs for everything on their site?
I recently installed the latest version of Speccy, 1.32.740. So, is it or isn't it...???