Hackers compromise Daemon Tools in global supply-chain attack, researchers say
Researchers at Kaspersky said attackers tampered with installers for Daemon Tools — a popular program used to mount disk images as virtual drives — and distributed them through the software’s official website.
Hackers have compromised installers of widely-used disk imaging software in a supply chain attack that has affected users in more than 100 countries, according to a new report.
Researchers at Kaspersky said attackers tampered with installers for Daemon Tools — a popular program used to mount disk images as virtual drives — and distributed them through the software’s official website.
The malicious versions, first observed in early April, affected multiple releases of the software installed on thousands of machines across more than 100 countries, including Russia, Brazil, Turkey, Spain, Germany and China.
Source: https://therecord.media/hackers-compromise-daemon-tools-global-supply-chain-attack
Related breach coverage
- Braintrust security incident raises concerns over AI supply chain risks2026-05-09
Braintrust warned customers to rotate API keys after hackers breached an AWS account, exposing secrets tied to cloud-based AI models. AI observability startup Braintrust warned customers to rotate API keys after attackers gained unauthorized access to one of the company’s AWS accounts, potentially exposing secrets used to connect to cloud-based AI models. The company said […]
- Pro-Ukraine BO Team and Head Mare hackers appear to team up in attacks against Russia2026-05-08
Researchers at Moscow-based cybersecurity firm Kaspersky said they identified overlapping infrastructure and tools used by both groups — including command-and-control systems operating on the same compromised host — suggesting some coordination.
- Vendor Says Daemon Tools Supply Chain Attack Contained2026-05-07
The software developer has identified the impacted systems, removed potentially compromised files, and validated installation packages. The post Vendor Says Daemon Tools Supply Chain Attack Contained appeared first on SecurityWeek.
- Government, Scientific Entities Hit via Daemon Tools Supply Chain Attack2026-05-06
While trojanized Daemon Tools versions were installed worldwide, a sophisticated backdoor was dropped only on a dozen systems. The post Government, Scientific Entities Hit via Daemon Tools Supply Chain Attack appeared first on SecurityWeek.