Yesterday, 18 January 2021, public announcements were made disclosing a breach of the IObit forum website which allowed threat actors to upload malicious code and spread ransomware to the IObit forum users who downloaded the compromised software from the forum. IObit is a Windows utility developer known for Windows system optimization and anti-malware programs, such as Advanced SystemCare and Driver Booster.
A full story of the breach and resulting ransomware infection can be obtained from the article published by Bleeping Computer, available here: https://www.bleepingcomputer.com/news/security/iobit-forums-hacked-to-spread-ransomware-to-its-members/
Ideal Technologies deploys utilities from IObit, including their Advanced System Care and Driver Booster utilities, for facilitating the maintenance of client workstations subscribed to managed IT services. In response to the recent IObit breach, however, effective immediately, Ideal Technologies is discontinuing the use of all IObit products.
It is important to note that no managed services clients are affected by the above-referenced breach, and no clients are at risk of ransomware infection. This was a targeted attack that required engagement from the user to download and install the compromised software package to their system. However, given the apparent lax response from IObit concerning this breach, and the apparent weak security of their website forum platform, Ideal Technologies has made an executive decision to discontinue our use of any and all IObit software utilities.
Ideal Technologies is already in the process of removing IObit utilities installed on client workstations, and no action is required on the user side.