惯性聚合 高效追踪和阅读你感兴趣的博客、新闻、科技资讯
阅读原文 在惯性聚合中打开

推荐订阅源

The Cloudflare Blog
让小产品的独立变现更简单 - ezindie.com
让小产品的独立变现更简单 - ezindie.com
人人都是产品经理
人人都是产品经理
C
Check Point Blog
有赞技术团队
有赞技术团队
H
Help Net Security
V
Vulnerabilities – Threatpost
N
News | PayPal Newsroom
Hacker News - Newest:
Hacker News - Newest: "LLM"
L
LINUX DO - 最新话题
Apple Machine Learning Research
Apple Machine Learning Research
博客园 - 【当耐特】
爱范儿
爱范儿
I
InfoQ
V
Visual Studio Blog
O
OpenAI News
Google DeepMind News
Google DeepMind News
S
Security Affairs
T
Troy Hunt's Blog
P
Palo Alto Networks Blog
Spread Privacy
Spread Privacy
Engineering at Meta
Engineering at Meta
雷峰网
雷峰网
N
Netflix TechBlog - Medium
Latest news
Latest news
H
Hackread – Cybersecurity News, Data Breaches, AI and More
Webroot Blog
Webroot Blog
S
Schneier on Security
MongoDB | Blog
MongoDB | Blog
T
Tor Project blog
V2EX - 技术
V2EX - 技术
Security Latest
Security Latest
Cloudbric
Cloudbric
The GitHub Blog
The GitHub Blog
酷 壳 – CoolShell
酷 壳 – CoolShell
B
Blog RSS Feed
C
CERT Recently Published Vulnerability Notes
T
The Exploit Database - CXSecurity.com
P
Privacy International News Feed
S
Securelist
C
Cisco Blogs
博客园_首页
TaoSecurity Blog
TaoSecurity Blog
奇客Solidot–传递最新科技情报
奇客Solidot–传递最新科技情报
Security Archives - TechRepublic
Security Archives - TechRepublic
P
Proofpoint News Feed
K
KPMG report finds enterprise disconnect between AI and its ROI | CIO
T
Threat Research - Cisco Blogs
阮一峰的网络日志
阮一峰的网络日志
S
Secure Thoughts

Consumer Insights

Coca-Cola halts Fairlife production across US after ransomware attack Qantas data breach started with a fake IT support call Lidl warns customers after data breach How to find out if your identity has been exposed by infostealers Texas breach exposes PII of 3 million hunting and fishing license customers Maine forced to take down data breach portal after fake notices filed with authorities Carnival breach exposes data of nearly 6 million people 7-Eleven data breach exposes data of 185,000 people UK Water Supplier Fined Nearly £1 Million After Hackers Roamed Networks for Almost 2 Years Instructure confirms breach; millions of Canvas users potentially impacted Stalkerware data leak exposes private screenshots linked to celebrities and influencers Hackers claim to have breached Udemy, stealing 1.4 million user records Rituals data breach exposes customer details Booking.com says breach exposed travelers’ data Basic-Fit data breach exposes member information across Europe Rockstar Games confirms breach after ShinyHunters leaks stolen analytics data Lapsus$ claims AstraZeneca breach exposes code and credentials Aura data breach exposes 900,000 records after phishing attack Telus Digital data breach confirmed after ShinyHunters claims 1PB theft Was Your Data Exposed in the Latest Under Armour Breach? Here’s What You Should Do Breach at Tinder, Hinge and OkCupid exposes user data Europe Fines Big Tech €1.2 Billion under GDPR in 2025 European Space Agency's cybersecurity in freefall as yet another breach exposes spacecraft and mission data European Space Agency Confirms New Data Breach; Classified Info May Have Been Stolen Rainbow Six Siege Servers Offline After Massive Breach Floods Accounts with Billions of R6 Credits 21,000 Nissan Customers Exposed After Third-Party Server Breach Spotify Catalog Scraped, 300TB Music and Metadata Dumped via Torrent University of Sydney Confirms Data Breach Affecting Thousands Leroy Merlin Breach Alert: French Customers Notified After Cyberattack Exposes Personal Data CodeRED Emergency Alerts Disrupted Across US After Ransomware Breach
DAEMON Tools Lite breach prompts urgent update after malware-laced installer
Vlad CONSTANTINESCU · 2026-05-07 · via Consumer Insights

Disc Soft says the compromised DAEMON Tools Lite installer has been removed and replaced with a clean version.

Disc Soft Limited has confirmed that DAEMON Tools Lite was hit by a supply chain attack that let attackers tamper with installation packages released through the software’s own distribution channel. The company said it found unauthorized interference in its infrastructure and some packages were released in a compromised state.

The incident affected the free DAEMON Tools Lite 12.5.1 release, while Disc Soft says DAEMON Tools Pro, DAEMON Tools Ultra and paid versions were not affected. A new build, DAEMON Tools Lite 12.6.0.2445, was released on May 5—a version that “does not contain the suspected compromised files,” according to a company advisory.

Backdoor reached users in over 100 countries

Security researchers said the campaign began on April 8 and involved digitally signed Windows installers served from the official DAEMON Tools website. The tampered versions reportedly included components such as DTHelper.exe, DiscSoftBusServiceLite.exe and DTShellHlp.exe.

The first-stage malware collected system details, including hostnames, MAC addresses, running processes, installed programs and locale information. Some victims received a second-stage backdoor capable of executing commands, downloading files and running code in memory. In at least one observed case, attackers deployed QUIC RAT.

Users should remove 12.5.1 and scan system

Anyone who installed the free DAEMON Tools Lite 12.5.1 version during the affected period should uninstall it, run a full antivirus scan and download version 12.6 from the official website. Organizations should also review systems for suspicious activity dating back to April 8.

For scenarios like these, a reputable security suite can help catch leftover malware, suspicious behavior or credential-related risks after the fact. Bitdefender Ultimate Security is the right fit for this kind of cleanup and follow-up protection, combining anti-malware defenses with privacy tools, a password manager, scam protection, breach notifications and digital identity protection.