CPU-Z and HWMonitor Hijacked: Inside the CPUID Supply Chain Attack
·945 words·5 mins
Attackers compromised CPUID’s official website and swapped download links for CPU-Z and HWMonitor with trojanized packages delivering STX RAT. The attack targeted the exact tools IT professionals carry on USB drives and run on production servers, turning implicit trust in a 20-year-old download source into a direct path to privileged credentials.