Puush

Puush operates as a screen sharing platform, providing tools for users to capture, share, and distribute screen content. The service historically included a Windows client with an auto-update mechanism, indicating a focus on real-time collaboration or content dissemination. Its infrastructure involved server-based distribution of software updates, suggesting a centralized model for maintaining client applications. The platform handled locally stored user passwords, implying authentication features for account access or data protection. Following a 2015 cybersecurity incident, the organization demonstrated incident response capabilities by issuing public communications and distributing a specialized malware removal tool directly to affected users.

The 2015 breach revealed operational vulnerabilities when attackers compromised a server to distribute malware disguised as a legitimate update. This incident specifically impacted the confidentiality of user credentials through the compromised Windows client, though platform availability and data integrity remained unaffected. The attack methodology—exploiting the auto-update channel—highlighted risks inherent in software distribution mechanisms. Puush's mitigation strategy included password reset directives for users and release of a standalone cleaner, reflecting prioritization of containment and user remediation. The Australia-based organization maintained public-facing crisis communication during the event but disclosed no structural details regarding corporate hierarchy or subsidiary relationships.