CPUID site hacked, serving malware‑infected CPU‑Z and HWMonitor downloads

CPUID’s website was briefly compromised, causing download links for tools like CPU‑Z and HWMonitor to redirect to malware‑packed installers. The malicious files used DLL sideloading to deploy the STX RAT infostealer. Kaspersky estimates that over 150 people — including some organizations — downloaded the altered packages before CPUID fixed the issue. The company says only a secondary API was affected and that the legitimate signed binaries were never modified.

Read the full story on BleepingComputer →