Disc Soft Limited confirmed that DAEMON Tools Lite was compromised in a supply chain attack and has released a clean version of the software.
Disc Soft Limited, the developer of DAEMON Tools Lite, has acknowledged a breach that resulted in the distribution of trojanized versions of its popular disc emulation software.
The company confirmed that attackers injected malware into the software during a supply chain compromise. Users who downloaded affected versions may have received malicious code alongside the legitimate application.
Response and Recovery
In response to the incident, Disc Soft Limited released a new malware-free version of DAEMON Tools Lite. The company has not disclosed specific details about the timing of the breach, how many users were affected, or the exact nature of the injected malware.
What Users Should Do
Users of DAEMON Tools Lite should update to the latest version immediately. Those running older versions should verify their installation status and consider reinstalling from the official sources.
Supply Chain Attacks
This incident joins a growing list of supply chain attacks targeting software vendors. By compromising legitimate applications, attackers gain access to large numbers of users while evading initial detection. Similar attacks have affected major software publishers in recent years, highlighting the vulnerability of the software distribution chain.
Context
DAEMON Tools Lite is widely used for creating virtual disc drives and mounting disc image files. Its popularity makes it an attractive target for attackers seeking broad distribution of malware.
Disc Soft Limited has not released a detailed technical analysis of the breach or remediation steps taken to prevent future incidents. Users should monitor the company's official channels for additional guidance and security updates.
Grok CLI experienced a critical bug that caused it to upload entire home directories to Google Cloud Storage. The issue sparked significant discussion in the developer community about data handling practices.
Aylo, Pornhub's parent company, will restore access to the site in the UK through Apple's device-level age verification system in iOS 26.4. The move requires users to complete age verification before accessing the platform.
Australia's eSafety Commissioner has identified significant gaps in how major tech platforms address online sexual extortion. Young men are reporting sextortion at higher rates than any other demographic, with over 2,000 complaints filed in just six months.
Angelo Martino, a ransomware negotiator, was sentenced to 70 months in prison for colluding with attackers to defraud victims. Martino helped orchestrate scams that extracted over $75 million from ransomware victims.