Diamond Sleet supply chain compromise distributes a modified CyberLink installer https://www.microsoft.com/en-us/sec...e-distributes-a-modified-cyberlink-installer/ (Emphasis by me.)
Yes read about it, quite shocking stuff. That's why I keep saying to never trust any app! I also wonder if it was able to bypass AV's, I wouldn't be surprised if this was the case. That's why it's never a bad idea to install extra protection tools, like anti-loggers and dedicated anti-ransomware, in other words, behavior blocking is the way to go.
