CPUID's CPU-Z and HWMonitor Downloads Compromised by Malware

Latest Security Breach

CPUID's official download page has fallen victim to a hacking incident, leading to the replacement of its popular tools CPU-Z and HWMonitor with malicious files. Users who recently downloaded these applications should perform a full scan of their systems immediately.

Reddit users DMkiIIer and OthoAi5657 alerted the community to this issue, confirming that while the download page appeared normal, the links redirected to malware-laden files. Vx-underground also verified these claims on social media, shedding light on the deceptive nature of the breach.

Details of the Compromise

The downloads for CPU-Z and HWMonitor, which are widely utilized by PC enthusiasts for hardware diagnostics, have been altered in a concerning way. Instead of receiving a legitimate file such as 'hwmonitor_1.63.exe,' users are instead downloading 'HWiNFO_Monitor_Setup.exe.' This change not only confuses users but also raises flags with anti-virus software upon execution.

As vx-underground noted, this malware is not typical. It boasts a deeply trojanized design, operates almost entirely in memory, and employs sophisticated evasion techniques against detection tools like EDRs and AVs. This makes it significantly more threatening than common malware.

Impact on Users

The ramifications of this breach extend beyond just CPU-Z and HWMonitor. There are fears that this could be part of a broader pattern targeting popular software tools. Previous incidents included a similar attack on the FileZilla FTP client, indicating that users should remain vigilant when downloading software from any source.