Summary
CPUID's official website was compromised to distribute the STX RAT infostealer through poisoned download links for popular tools like CPU-Z and HWMonitor. The attack used DLL sideloading and masquerading to bypass security defenses and target organizations across multiple global sectors.
Take Action:
If you downloaded CPU-Z, HWMonitor, or PerfMonitor between April 9–10, 2026, assume your system is compromised. Immediately change all your passwords (especially those saved in your browser), enable multi-factor authentication everywhere, and run a full security scan or reinstall your OS. Going forward, always verify software downloads by checking file signatures and hashes against the vendor's official published values before running any installer.
Read the full article on BeyondMachines
This article was originally published on BeyondMachines
Top comments (0)