According to Talos, at least 20 computers in the targeted domains were infected by the second-stage payload, though the number could very well be in the hundreds. The focus of security researchers is currently on preventing any damage that the second-stage payload may have dealt, as Avast believes that the second phase of the attack was indeed carried out, contrary to earlier claims. CCleaner Malware Attack AftermathĪn Avast spokeswoman said that the cybersecurity company has not ruled out the possibility that the cyberattack was sponsored by a state or that it was a case of industrial espionage. The discovery reveals that the plan of the attackers was to use CCleaner as a distribution vehicle for its malware during the first stage and, then for the second stage, focus on infected devices of users who were working in one of the targeted companies. Other companies that had their domains targeted were Sony, Samsung, Intel, and even Cisco itself. Several major technology companies were targeted by malicious code injected into Avast-owned Piriform CCleaner software prior to release in a supply chain compromise. The targeted domains, according to the Talos research group of Cisco, included Microsoft's internal domain for Windows developers and Google's internal domain for Gmail used by its employees. The second phase of the attack was to infect certain domains with a payload that will collect data and provide the hackers with persistent access to infected devices. They have discovered that, at the time that they took over the servers, the hackers were targeting a string of internal domains with the second part of their plan. So Id like to know what to do as Im panicking right now. But I heared people saying they found a Trojan on the 64Bit. Researchers have been studying the data seized from a command-and-control center that the hackers were using for the cyberattack. I have had CCleaner 64bit version 5.33, and Im kinda scared that I probably got the malware, I heard that the 32Bit only got affected. CCleaner Hack Targeted Major Tech Companies It was discovered, however, that the injection of malware into the software was just the first part of a larger cyberattack that has been neutralized. When the ransomware successfully contacted this domain, it took no further. Piriform, the owner of CCleaner, which in turn is owned by Avast, eased the concern of the app's users by saying that the threat has already been disarmed. The NCSCs aim is to make the UK an unattractive target to cyber criminals.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |