[KR-SW] CCleaner 가 해커에 의해 공격받았습니다.steemCreated with Sketch.

in #kr7 years ago

안녕하세요. @ArieD 입니다.

오늘은 뭐 컴퓨터 관련된 이야기입니다.

http://www.piriform.com/news/release-announcements/2017/9/18/security-notification-for-ccleaner-v5336162-and-ccleaner-cloud-v1073191-for-32-bit-windows-users

Security Notification for CCleaner v5.33.6162 and CCleaner Cloud v1.07.3191 for 32-bit Windows users

We recently determined that older versions of our Piriform CCleaner v5.33.6162 and CCleaner Cloud v1.07.3191 had been compromised. We estimate that 2.27 million people used the affected software. We resolved this quickly and believe no harm was done to any of our users. This compromise only affected customers with the 32-bit version of the v5.33.6162 of CCleaner and the v1.07.3191 of CCleaner Cloud. No other Piriform or CCleaner products were affected. We encourage all users of the 32-bit version of CCleaner v5.33.6162 to download v5.34 here: download. We apologize and are taking extra measures to ensure this does not happen again.

Issue Summary: Our new parent company, the security company Avast, determined on the 12th of September that the 32-bit version of our CCleaner v5.33.6162 and CCleaner Cloud v1.07.3191 products, which may have been used by up to 3% of our users, had been compromised in a sophisticated manner. Piriform CCleaner v5.33.6162 was released on the 15th of August, and a regularly scheduled update to CCleaner, without compromised code, was released on the 12th of September. CCleaner Cloud v1.07.3191 was released on the 24th of August, and updated with a version without compromised code on September 15. The compromise could cause the transmission of non-sensitive data (computer name, IP address, list of installed software, list of active software, list of network adapters) to a 3rd party computer server in the USA. We have no indications that any other data has been sent to the server. Working with US law enforcement, we caused this server to be shut down on the 15th of September before any known harm was done. It would have been an impediment to the law enforcement agency’s investigation to have gone public with this before the server was disabled and we completed our initial assessment. Between the 12th and the 15th, we took immediate action to make sure that our Piriform CCleaner v5.33.6162 and CCleaner Cloud v1.07.3191 users were safe - we worked with download sites to remove CCleaner v5.33.6162, we pushed out a notification to update CCleaner users from v5.33.6162 to v5.34, we automatically updated those where it was possible to do so, and we automatically updated CCleaner Cloud users from v1.07.3191 to 1.07.3214.

We are continuing to investigate how this compromise happened, who did it, and why. We are working with US law enforcement in their investigation. A more technical description of the issue is on our Piriform blog at: www.piriform.com/news/blog. Again, we sincerely apologize for this and are committed to making sure nothing similar happens again. We encourage any user of the 32-bit version of CCleaner v5.33.6162 to download the latest version of Piriform CCleaner found here: www.piriform.com/ccleaner/download/standard.

PC 최적화 프로그램의 한축을 담당하고 있는 CCleaner입니다만, 공지를 통해 CCleaner이 해킹으로 인해

32-bit Windows 버전의 CCleaner v5.33.6162 와 CCleaner Cloud v1.07.3191이 변조되어

PC명, IP Address, 설치된 프로그램 목록, 실행중인 프로그램 목록, 네트워크 어댑터 목록

이 제3자의 서버에 전송되었다고 합니다.

이로인한 피해자는 227만명 정도로 예상된다고 합니다.

Piriform측은 즉각적으로 추가 업데이트 알림을 올렸으나, 혹시나 32Bit를 쓰고 계시고 해당 프로그램을 깔고 있다면 권장에 따라, 업데이트를 하시는 것을 권해드립니다.

Sort:  

휴 얼마전 지웠는데다행이네요 ㅎㅎ

Coin Marketplace

STEEM 0.22
TRX 0.26
JST 0.040
BTC 96371.40
ETH 3383.73
USDT 1.00
SBD 3.17