According to the researchers, malicious code was introduced into CCleaner by professional hackers — cybergroup called Axiom (APT17, Group 72, DeputyDog, Tailgater Team, Hidden Lynx, Voho or AuroraPanda). This assumption was made by Kaspersky Lab’s specialist Costin Raiu. Later, Cisco Talos experts published a detailed report of their research, which also allowed the possibility of the involvement of Group 72 in hacking CCleaner.
Cisco Talos researchers have already notified the affected tech companies about a possible breach. Avast has not commented on the situation.