News

Employers Beware Of Malware Trojan Stealing Contact Lists Using A Word Document

Ursnif, a sophisticated malware, combines a Trojan with a phishing attack. Learn how to protect your data from this and similar malware. Read More


OSHA Updates Online Form To Help Whistleblowers File Complaints

OSHA's online whistleblower complaint form has been revised. Learn about whistleblower protections against retaliation. Read More


Privileged Passwords Subject To Attack

The vast majority of IT security professionals do not follow best practices for keeping privileged passwords safe from data thieves. We examine. Read More


print   email   Share

Malware Piggybacking On Popular Software And Apps: How Can Employers Increase Awareness

Hackers have infiltrated servers used by the popular CCleaner software, which is designed to remove unwanted cookies and improve web privacy, and have infected it with malware.

Two billion users have downloaded CCleaner, and its popularity made it an appealing target for hackers. As a result of the server breach, more than 2.27 million users ended up downloading malware.

According to security researchers, "For a period of time, the legitimate signed version of CCleaner 5.33 being distributed by Avast also contained a multi-stage malware payload that rode on top of the installation of CCleaner." The CCleaner owner claims the organization was able to disable the malware before it harmed any user. Tom Warren "Hackers hid malware in CCleaner software," www.theverge.com (Sept. 18, 2017).


Commentary

Popular apps and software are preferred targets for online criminals.

Hackers who “piggyback” malware onto legitimate software make it difficult for preventing malware damage.

Employers must make employees and workplace participants aware when apps and software are compromised and reported to the public. Stay tuned to this platform for current news and information on emerging malware risks including: 


Bluetooth Malware Discovered: 5.3 Billion Devices At Risk

Could That E-Cigarette Give You Malware? You Bet!

Identity Theft Prevention: How To Craft A Password That Can't Be Hacked For 103 Years

Finally, your opinion is important to us. Please complete the opinion survey:

EEOC News

EEOC Seeks Input on FY 2018-2022 Strategic Plan

December 8, 2017

READ MORE

AccentCare to Pay $25,000 To Settle EEOC Disability Discrimination Suit

December 1, 2017

READ MORE

Trans Ocean Seafoods To Pay $75,000 To Settle EEOC Sexual Harassment Suit

November 30, 2017

READ MORE