DigiNews

Tech Watch by Johan Denoyer

← Back to articles

CPUID site hijacked to serve malware instead of HWMonitor downloads

Quality: 8/10 Relevance: 9/10

Summary

The Register reports a six-hour backend breach at CPUID that hijacked download links for HWMonitor and CPU-Z, delivering malware instead of legitimate installers. The incident involved a compromised API rather than tampering with builds, with attackers employing memory-resident techniques and targeting 64-bit HWMonitor users, including a fake CRYPTBASE.dll and potential credential theft. The breach underscores risks to software distribution chains and the need for download verification and backend integrity monitoring.

🚀 Service construit par Johan Denoyer