Disc Soft Limited, the developer of DAEMON Tools Lite, confirmed a supply chain attack that compromised the free version of their software, leading to the release of a trojanized installer. They have since released a malware-free version and advised users of the affected version to uninstall it and run security scans.
The recent supply chain attack on DAEMON Tools Lite underscores the critical need for robust monitoring and incident response strategies in software delivery pipelines. For cybersecurity professionals, especially those dealing with SOC and security operations, it is imperative to ensure continuous validation of the integrity of installation packages and to quickly roll out remediation steps when a breach is detected to minimize user impact and prevent further exploitation.