When news broke yesterday that Ccleaner had been hacked and a dangerously modified version had been available to download for a number of weeks, there were understandable concerns from the program's large userbase.
To this end, company CEO Vince Steckler and CTO Ondřej Vlček have written an article clarifying what happened with CCleaner, and give some details about how they plan to protect their customers -- as well as "correct[ing] some misleading information that is currently circulating."
The pair start off by trying to play down the impact of what happened, whilst admitting that in the light of the recent Equifax data breach, people are particularly sensitive about Security at the moment.
As only two smaller distribution products (the 32 bit and cloud versions, Windows only) were compromised, the actual number of users affected by this incident was 2.27M.
By similar logic, security companies are not usually advising customers to reformat their machines after a remote code execution vulnerability is identified on their computer.
- CCleaner: Extremely popular cyber security app infected millions of users with ...The Independent
- Glitch in Cyber Security App CCleaner Leaves 2.3 Million Users InfectedSputnik International
- Avast takes dig at Cisco, thanks Morphisec for uncovering CCleaner compromiseThe INQUIRER
- Hackers compromised free CCleaner softwareThe Express Tribune
- Hackers Infected CCleaner's 32-Bit App, Here's How To Fix ItLifehacker Australia
- Software Has a Serious Supply-Chain Security ProblemWIRED
- Avast Clarifies Details Surrounding CCleaner Malware IncidentBleepingComputer
- Act Now: Hackers Hid Malware in Security App With 2 Billion DownloadsInc.com
- CCleaner downloads infected with malwareOS News