Официальный сайт CPUID, по всей видимости, был скомпрометирован, а все пользователи, которые пытались загрузить HWMonitor и CPU-Z получали установочные файлы с вредоносным ПО.

CPUID, разработчик HWMonitor и CPU-Z, - французская компания, известная своими инструментами профилирования и мониторинга систем, широко используемыми ИТ-специалистами и производителями оборудования. Только у CPU-Z десятки миллионов пользователей по всему миру.

Первые сообщения о проблема появились (https://www.reddit.com/r/pcmasterrace/comments/1sh4e5l/warning_hwmonitor_163_download_on_the_official/) на Reddit. Один из пользователей, обновлявших HWMonitor до версии 1.63, был перенаправлен с официального сайта CPUID на загрузку подозрительного файла с именем HWiNFO_Monitor_Setup.exe.

Аномалия сразу же привлекла внимание, поскольку HWiNFO - это совершенно отдельный инструмент для мониторинга оборудования, разработанный другим поставщиком.

#infosec #malware #cpuid #hwmonitor #cpuz #hwinfo

Punto Informatico: Attacco a CPUID: malware in CPU-Z e HWMonitor

Ignoti cybercriminali (forse di origine russa) hanno cambiato i link per il download di CPU-Z e HWMonitor sul sito ufficiale per distribuire un malware.
The post Attacco a CPUID: malware in CPU-Z e HWMonitor appeared first on Punto Informatico.

Attack on CPUID: malware in CPU-Z and HWMonitor

Unknown cybercriminals (possibly of Russian origin) have changed the download links for CPU-Z and HWMonitor on the official website to distribute malware.
The post CPUID Attack: malware in CPU-Z and HWMonitor appeared first on Punto Informatico.

#CPUID #Russian #HWMonitor #CPUIDAttack #first #PuntoInformatico

https://www.punto-informatico.it/attacco-cpuid-malware-cpu-z-hwmonitor/

CPUID Website Compromised, Serves Malware via HWMonitor Downloads

For six hours, unsuspecting visitors to the CPUID website were put at risk of having their passwords stolen when malicious malware was served in place of the HWMonitor tool they were trying to download. This alarming security breach highlights the vulnerability even trusted sites can have, leaving users to wonder if their…

https://osintsights.com/cpuid-website-compromised-serves-malware-via-hwmonitor-downloads?utm_source=mastodon&utm_medium=social

#SupplyChainAttack #MalwareOperations #CredentialStealing #Hwmonitor #Cpuid

RE: https://social.tchncs.de/@gborn/116380074049025577

Ich reich das mal ungeprüft weiter, sicher ist sicher:

#cpuz #hwmonitor #cpuid #Trojaner #trojan

RE: https://social.tchncs.de/@gborn/116380074049025577

Alarm an alle PC / Windows Nutzer

#cpuz #hwmonitor #cpuid #Trojaner #trojan #security

und einen schönen Start ins Wochenende!

CPUID Compromised in Supply Chain Attack

A recent supply chain attack on the CPUID project has raised alarming questions about trust in software downloads, after hackers manipulated the official website to serve malware-infected versions of popular tools like CPU-Z and HWMonitor. Can users, defenders, and policymakers be certain that their software sources are safe?

https://osintsights.com/cpuid-compromised-in-supply-chain-attack?utm_source=mastodon&utm_medium=social

#SupplyChainAttack #Cpuid #MalwareOperations #EmergingThreats #ApiCompromise

2024W07

OmniOS Stable is updated to r151048o
This update requires a reboot
https://github.com/omniosorg/omnios-build/blob/44731424e67c8aaafe5c4e500fe7c4544a22f0f6/doc/ReleaseNotes.md#r151048o-2024-02-15

OmniOS Extras updates include:
— OpenLDAP updated to 2.6.7
— VirtualBox updated to 7.0.14a
— BIND updated to 9.16.48 / 9.18.24
— Unbound updated to 1.19.1
— OpenVPN updated to 2.6.9
— Nginx updated to 1.25.4
— Listmonk updated to 3.0.0
And much more!

SmartOS 20240208T000334Z
Interesting changes include:
— bhyve returns bogus cpuid 8000_001D leaf
— update pkgsrc-setup to 20240116
— Update curl to 8.6.0
— Update OpenSSL to 3.0.13
https://us-east.manta.joyent.com/Joyent_Dev/public/SmartOS/smartos.html#20240208T000334Z

2024-02-15 bhyve Production User Call
https://www.youtube.com/watch?v=X1joWFfpTX8

Mirroring OmniOS: The Complete Guide; Part One
https://antranigv.am/posts/2024/02/omnios-mirror-one/

Booting OmniOS on Vultr
https://github.com/omniosorg/illumos-omnios/issues/1432

Migrate a FreeBSD bhyve virtual machine to OmniOS
https://www.tumfatig.net/2024/migrate-a-freebsd-bhyve-virtual-machine-to-omnios/

ZFS encryption and notification service on OmniOS
https://www.tumfatig.net/2024/zfs-encryption-and-notification-service-on-omnios/

Configure OmniOS to use an authenticated SMTP relay (smarthost)
https://www.tumfatig.net/2024/configure-omnios-to-use-an-authenticated-smtp-relay-smarthost/

Remotely install OmniOS on a Dell R620
https://www.tumfatig.net/2024/remotely-install-omnios-on-a-dell-r620/

Dealing with USB Storage devices on OmniOS
https://www.tumfatig.net/2024/dealing-with-usb-storage-devices-on-omnios/

Running OpenBSD on OmniOS using bhyve
https://www.tumfatig.net/2024/running-openbsd-on-omnios-using-bhyve/

SMB shares using OmniOS, zones and ZFS
https://www.tumfatig.net/2023/smb-shares-using-omnios-zones-and-zfs/

Add support for Emulex LPe35000/LPe36000 32Gb/64Gb fibre channel chipsets
https://www.illumos.org/issues/15391
https://github.com/illumos/illumos-gate/commit/e2d1a4340d8c7e04c758949b4fb4b1934fcf9330

Provide execvpe
https://www.illumos.org/issues/7125
https://github.com/illumos/illumos-gate/commit/a89c0811c892ec231725fe10817ef95dda813c06

Port NFSv41 base
(Allows to enable and disable NFSv4 minor versions)
https://www.illumos.org/issues/15405
https://github.com/illumos/illumos-gate/commit/f44e1126d9eae71c48c5d1de51e24750c6ec20a4

pcieadm decodes readiness time reporting
https://www.illumos.org/issues/16233
https://github.com/illumos/illumos-gate/commit/8a300ed6ab165c8d46fd165c6d8a4de8a5b0b596

Update tzdata to 2024a
https://www.illumos.org/issues/16230
https://github.com/illumos/illumos-gate/commit/e15592c8dabdb93c1b45a4785db35f013e0b49f9

illumos now recognizes QEMU/TCG as a hypervisor
https://www.illumos.org/issues/16139
https://github.com/illumos/illumos-gate/commit/2faf06a0ad863963d95ad569428e5e6e45255ab7

https://news.illumos.am/2024w07/

#bhyve #cpuid #DellR620 #Emulex #FibreChannel #FreeBSD #illumos #NFS #OfficeHours #OmniOS #OpenBSD #PCIe #pcieadm #QEMU #SmartOS #SMB #Storage #syscall #tzdata #USB #Vultr #ZFS