News
CPUID Supply Chain Attack: CPU-Z and HWMonitor Official Downloads Replaced with RAT Malware for Six Hours
CPUID's official download servers were compromised April 9-10, serving trojanized CPU-Z 2.19 and HWMonitor 1.63 installers containing a Remote Access Trojan for approximately six hours. The RAT targeted Chrome's IElevation COM interface to dump and decrypt saved passwords, with C2 persistence and credential theft capabilities. Kaspersky's Securelist confirmed it was the same threat group behind the FileZilla compromise in March 2026, making this a confirmed serial supply chain campaign targeting popular developer/sysadmin utilities.
↳ Follow the thread