CPUID site hijacked to serve malware instead of HWMonitor downloads
Summary
The Register reports a six-hour backend breach at CPUID that hijacked download links for HWMonitor and CPU-Z, delivering malware instead of legitimate installers. The incident involved a compromised API rather than tampering with builds, with attackers employing memory-resident techniques and targeting 64-bit HWMonitor users, including a fake CRYPTBASE.dll and potential credential theft. The breach underscores risks to software distribution chains and the need for download verification and backend integrity monitoring.