CPUID Hacked to Serve Trojanized CPU-Z and HWMonitor Downloads
Download links were replaced by a Russian-speaking threat actor to distribute a recently emerged malware named STX RAT. The post CPUID Hacked to Serve Trojanized CPU-Z and HWMonitor Downloads appeared first on SecurityWeek.
The CPUID website, popular in the PC hardware community, was recently hacked and altered to deliver malicious versions of CPU-Z, HWMonitor, and PerfMonitor.
CPU-Z, HWMonitor, and PerfMonitor provide essential PC hardware insights: CPU-Z delivers detailed system information on the processor, motherboard, memory, and graphics; HWMonitor monitors real-time sensor data such as voltages, temperatures, and fan speeds; and PerfMonitor tracks processor performance. The applications, used by individuals and enterprises, have millions of downloads.
According to the maintainer of CPUID, a secondary feature (side API) was compromised, causing the website to randomly display links to third-party domains hosting trojanized versions of CPU-Z, HWMonitor, and PerfMonitor. The original files were not affected.
Source: https://www.securityweek.com/cpuid-hacked-to-serve-trojanized-cpu-z-and-hwmonitor-downloads/
Related breach coverage
- CPUID watering hole attack spreads STX RAT malware2026-04-13
Threat actors compromised the CPUID website and spread STX RAT through fake CPU-Z and HWMonitor downloads. Attackers breached the website CPUID and replaced download links for CPU-Z and HWMonitor with malicious files for several hours. Users who downloaded them got infected with the STX RAT, giving attackers remote access to their systems. The short attack […]
- 250,000 Affected by Data Breach at Nacogdoches Memorial Hospital2026-04-02
In January 2026, a threat actor hacked the hospital’s internal network and stole personal and health information. The post 250,000 Affected by Data Breach at Nacogdoches Memorial Hospital appeared first on SecurityWeek.
- Cloned AI Tool Sites Distribute Malware in ‘InstallFix’ Campaign2026-03-09
Threat actors replace legitimate commands on the cloned installation webpages with malicious commands. The post Cloned AI Tool Sites Distribute Malware in ‘InstallFix’ Campaign appeared first on SecurityWeek.
- NordVPN Denies Breach After Hacker Leaks Data2026-01-06
The VPN company has conducted an investigation after a threat actor claimed to have hacked its systems. The post NordVPN Denies Breach After Hacker Leaks Data appeared first on SecurityWeek.