Thank you for being a valued part of the CNET community. As of December 1, 2020, the forums are in read-only format. In early 2021, CNET Forums will no longer be available. We are grateful for the participation and advice you have provided to one another over the years.

Thanks,

CNET Support

Alert

CCleaner

Sep 18, 2017 10:16AM PDT

Discussion is locked

- Collapse -
CCleaner Hacked
Sep 18, 2017 10:29AM PDT

The Hacker News‏Verified account @TheHackersNews

Piriform Confirms Windows 32-bit of CCleaner version 5.33.6162 and 1.07.3191 of CCleaner Cloud are affected.

Update to v5.34 or higher.
7:17 AM - 18 Sep 2017
===================================
Florian Pouchet‏ @poulti

If you installed CCleaner between the 15th Aug. and 12th Sept. (v5.33), your system is likely compromised > restore/reinstall
3:25 AM - 18 Sep 2017
===================================
5 million(!) people install CCleaner every week... and it was compromised for 4-5 weeks with nobody knowing.
===================================
TechCrunchVerified account @TechCrunch · 3h3 hours ago
Avast reckons CCleaner malware infected 2.27M users
====================================
https://techcrunch.com/2017/09/18/avast-reckons-ccleaner-malware-infected-2-27m-users/

Users of a free software tool designed to optimize system performance on Windows PCs and Android mobile devices got a nasty shock this morning when Piriform, the company which makes the CCleaner tool, revealed in a blog post that certain versions of the software had been compromised by hackers — and that malicious, data-harvesting software had piggybacked on its installer program.

The affected versions of the software are CCleaner 5.33.6162 and CCleaner Cloud 1.07.3191.

The company is urging users to upgrade to version 5.34 or higher (which it says is available for download here).

So clearly some users may still have a compromised PC on their hands (Piriform says it’s moving all users of the CCleaner to the latest version of the software, while noting that users of CCleaner Cloud will have been updated automatically.)

The malware was apparently capable of harvesting various types of data from infected machines — specifically, Piriform says: the computer name, IP address, list of installed software, list of active software and list of network adapters (data it describes as “non-sensitive&rdquoWink — transmitting it to a third party computer server located in the US.
====================================

- Collapse -
The 32 bit was affected
Sep 19, 2017 6:20AM PDT

and the 64 bit wasn't.