Watering-Hole

CPUID Website Compromised to Deliver STX RAT via CPU-Z and HWMonitor Downloads

Attackers compromised CPUID's download infrastructure for ~19 hours, replacing CPU-Z and HWMonitor installers with trojanized builds that sideload STX RAT via a malicious CRYPTBASE.dll.