The official site for RVTools has been
hacked to serve a compromised installer for the popular VMware environment reporting utility.
"Robware.net and RVTools.com are currently
offline. We are working expeditiously to restore service and appreciate your patience," the company
said in a statement posted on its website.
The development comes after security researcher Aidan Leon
revealed that an infected version of the
installer downloaded from the website was being used to sideload a
malicious DLL that turned out to be a known malware loader called
Bumblebee.
Adopt "Zero-trust" surfing and if possible, keep you SAC on for DLL sideloading prevention
iClicker hack targeted students with malware via fake CAPTCHA
New DotRunpeX Malware Delivers Multiple Malware Families via Malicious Ads