CPUID
Coverage of CPUID in the Nexus archive.
- CPUID Breach Distributes STX RAT via Trojanized CPU-Z and HWMonitor Downloads
Unknown threat actors compromised CPUID's website, which hosts hardware monitoring tools, to distribute malicious executables for CPU-Z, HWMonitor, and other tools, deploying the STX RAT. The breach occurred from April 9 to 10, 2023, lasting less than 24 hours.
- Supply chain attack at CPUID pushes malware with CPU-Z/HWMonitor
A supply chain attack targeted the CPUID project, allowing hackers to alter download links for CPU-Z and HWMonitor tools. Malicious executables were distributed through the official website's API, compromising users' systems via trusted software.
- CPUID site hijacked to serve malware instead of HWMonitor downloads
The CPUID website was compromised for six hours, redirecting trusted download links to serve malware instead of the legitimate HWMonitor software. Attackers hijacked part of the backend, exposing users to credential stealers and other malicious payloads.