Gaming peripheral manufacturer Endgame Gear has confirmed that hackers successfully compromised its official software distribution system, using the company’s OP1w 4K V2 mouse configuration tool to spread dangerous Xred malware to unsuspecting customers for nearly two weeks. The manufacturer has since implemented several security enhancements, including additional malware scanning procedures, reinforced anti-malware protections on hosting servers, and plans to add digital signatures to all software files. Xred collects sensitive system information, including MAC addresses, usernames, and computer names, transmitting this data to attackers via SMTP email addresses hardcoded into the malware. User Admirable-Raccoon597, who first identified the compromise, noted that the infected file came “from the official vendor page” rather than any third-party source. The security breach, which occurred between June 26 and July 9, 2025, represents a troubling example of supply chain attacks targeting the gaming industry. The malware-infected software was distributed directly from Endgame Gear’s official product page, making it particularly difficult for users to detect the threat. Beyond basic data theft, Xred includes keylogging functionality through keyboard hooking techniques, potentially capturing banking credentials and other sensitive information.
This Cyber News was published on cybersecuritynews.com. Publication date: Sat, 26 Jul 2025 10:25:16 +0000