Attackers compromised Daemon Tools software to deliver backdoors
Kaspersky researchers uncovered another supply chain compromise involving a popular Windows tool: Daemon Tools, an app for mounting disk image files as virtual drives that is widely used by gamers, developers, and IT professionals. Since April 8, 2026, the official Daemon Tools download site (at Deamon-tools[.]cc) was serving signed, trojanized Windows installers. Once installed, these compromised binaries would silently reach out to an attacker-controlled server to download a .NET-based information collector, harvesting system details such … More
The post Attackers compromised Daemon Tools software to deliver backdoors appeared first on Help Net Security.
