Category Archives: News

CCleaner hacked and bundled with malware

CCleaner is a popular cleaning program that is often installed to help clean up a slow PC. It boasts that it “protects your privacy and makes your computer faster and more secure”.

A recent version of CCleaner, version 5.33, had been modified to include malware. Attackers had managed to compromise a server from which users download CCleaner. They were then able to add malware to the setup file and resign it with a legitimate certificate. This helped the malware to bypass any protections users had in place that might have otherwise stopped the installation.

The malware only affects 32-bit systems, and is removed with the latest update of CCleaner.

The malware that is included is known as Floxif. It is a Trojan that allows the attacker to run additional executable files on your PC as well as collect information regarding your PC.

If you are a user of CCleaner it is highly recommend installing the latest version from the Piriform website.

uBlock Origin (Block Unwanted Ads)

uBlock Origin is a lightweight browser plugin. It blocks ads, trackers and malware sites. I highly recommend installing it to help keep your PC secure. More information regarding this plugin can be found on the creators Github page.

uBlock Origin is available for Google Chrome and Firefox.

Recently I have noticed another round of Tech Support Scams. While uBlock Origin doesn’t prevent you being conned by a scammer, it does help by blocking malicious ads and websites associated with the scam.

Many of these scams are initialized when the user clicks a malicious ad. Once you click the link, a pop-up will display a message that your device is infected with a virus. The message will then go on to display a phone number to call to have said virus removed.

Once you call the scammers, they will offer to “clean” your device and offer you a high-priced subscription to access free tools.

Alternatives to uBlock Origin

While I do find uBlock Origin to be a great tool, there is not yet support for all web browsers and devices. As a result, users of Safari, Internet Explorer, Edge, or a mobile device might like to check these alternatives.

Adblock Plus is a browser plugin available for all the major browsers. It does take a bit of tweaking as is doesn’t block as heavily as uBlock by default.

Brave browser is a web browser available for Windows, macOS, Linux, Android, and iOS. It helps to block malicious ads, and trackers. If you need an ad-blocker for your mobile device I highly recommending checking out Brave.

The downside of blocking ads

Many websites rely on advertising to stay afloat. If you do decide to block ads, consider donating to that particular website.

Many content creators will have a donation page of sorts where you can make small donation to keep their service alive.

myGov Phishing Email

Be wary of emails claiming to be from myGov, advising users that their myGov identity must be verified. The email takes the user to a phishing website.

Example of MyGov Phishing Email

The risk of this email is that Tax returns are performed using myGov credentials. This could lead to a Tax return scam. MyGov is also used for Centrelink & Medicare services.

Users that use the same password over many websites could also have those accounts compromised. To protect accounts, my advice is to use a password manager protected by a strong password.

Always be cautious of emails that require urgency or ask a user to click a link to verify details.

Although not the case with this email, the senders email address can be spoofed to look as though it is coming from a legitimate source. This is a tactic used to trick a user into lowering their guard. Don’t trust that because an email address looks legitimate, that is from the sender.

Links in emails can also look like they are pointing to a legitimate website. Hovering over a link in an email will show the actual website you will be linked to. In this case, a website in the Czech Republic.

For other posts on how to help keep yourself secure visit our Tech Tips page.