CPUID Breach Distributes STX RAT via Trojanized CPU-Z and HWMonitor Downloads

📅 12 April 2026 at 05:54 UTC📰 The Hacker NewsView original source ↗

Unknown threat actors compromised CPUID ("cpuid[.]com"), a website that hosts popular hardware monitoring tools like CPU-Z, HWMonitor, HWMonitor Pro, and PerfMonitor, for less than 24 hours to serve malicious executables for the software and deploy a remote access trojan called STX RAT. The incident lasted from approximately April 9, 15:00 UTC, to about April 10, 10:00 UTC, with

🤖 AI BriefingAuto-generated threat analysis

🔍Threat Overview

Unknown threat actors compromised CPUID website, serving malicious executables for popular hardware monitoring tools and deploying a remote access trojan (RAT) called STX RAT. The incident lasted approximately 15 hours, starting from April 9, 15:00 UTC.

⚙️Technical Details

Affected Systems

Users who downloaded CPU-Z, HWMonitor, HWMonitor Pro, or PerfMonitor from the compromised CPUID website

Attack Vectors

Malicious executables served through compromised websiteTrojanized downloads of legitimate software

💥Impact Assessment

Severity: H

🛡️Recommended Actions

1Immediately update and verify the integrity of installed hardware monitoring tools

2Disable automatic updates for affected software until further notice

3Monitor system logs for suspicious activity and report any anomalies

📦Affected Products

CPU-ZHWMonitorHWMonitor ProPerfMonitor

Read the full article

This is a curated summary. The complete article is available at The Hacker News.

Read on The Hacker News ↗

← Back to feed