[The Exiled]

Citiraj:

Autor Drug Brko

Nego, znači cijeli Piriform je kompromitiran

Sustav im je hackiran prije skoro tri mjeseca, tj. za vrijeme prije nego ih je kupil Avast. Ako su dosad šutjeli o zaraženom CCleaneru, onda znaš da ne budu na prvu priznali kakvo je stanje s ostatakom njihove softverske ponude.

Ni ovo s CCleanerom ne bi došlo u javnost da treće strane nisu digle uzbunu.

Avast Clarifies Details Surrounding CCleaner Malware Incident

Citiraj:

July 3 - Evidence suggests hackers breached Piriform's IT systems.
July 18 - Avast decides to buy Piriform, the company behind CCleaner.
August 15 - Piriform, now part of Avast, releases CCleaner 5.33. The CCleaner 5.33.6162 installer included the Floxif trojan, but the malware executed only on 32-bit systems.
August 20 and 21 - Morphisec's security product detects first instances of malicious activity (malware was collecting device details and sending the data to a remote server), but Morphisec does not notify Avast.
August 24 - Piriform releases CCleaner Cloud v1.07.3191 that also includes the Floxif trojan.
September 11 - Morphisec customers share detection logs detailing CCleaner-related malicious activity with the company's engineers.
September 12 - Morphisec notifies Avast and Cisco of the suspicious CCleaner activity. Avast starts its own investigation and also notifies US law enforcement. Cisco also starts its own investigation.
September 14 - Cisco notifies Avast of its own findings.
September ?? - Cisco had registered, in the meantime, all the domains that the malware would have used in the future to determine and calculate the C&C server IP address.
September 15 - Following a collaboration between Avast and law enforcement, the malware's C&C server was taken down.
September 15 - Avast releases CCleaner 5.34 and CCleaner Cloud 1.07.3214 that remove the Floxif malware.
September 18 - CCleaner incident becomes public following Cisco, Morphisec, and Avast/Piriform reports.