CPUID Website Hacked to Distribute Trojanized Software Affecting Global Users
The CPUID website, known for its popular PC hardware monitoring tools, was recently compromised to distribute malicious versions of its software, including CPU-Z, HWMonitor, and PerfMonitor. These applications are widely used for detailed system information and real-time sensor data monitoring. The hack involved a secondary feature of the website, which was altered to display links to third-party domains hosting trojanized versions of the software. Kaspersky, a cybersecurity firm, identified over 150 victims, including individuals and organizations across various sectors such as manufacturing and telecoms. The attack primarily affected users in Brazil, China, and Russia, although Kaspersky's visibility in North America and Europe is limited. The malicious installers included a file named cryptbase.dll, which was used to load malware known as STX RAT, capable of stealing browser credentials and cryptocurrency wallets. The incident was part of a broader campaign linked to a Russian-speaking threat actor. 
