Earlier this week, we reported on news that the popular system maintenance app CCleaner had been infected by malware for nearly a month. We now know the attack was worse than initially thought. The CCleaner malware could be used to deliver a second-stage payload that would run on local systems and perform various tasks. This isn’t an unusual malware feature, but researchers didn’t think the capability had been used in this case. We now know that it was, and that some of the internet’s biggest players were targeted.