New Tampered Chef Malware Campaigns Discovered in Productivity Software

Researchers uncovered a widespread campaign dubbed "Tampered Chef" that trojanizes legitimate business productivity software and distributes it through large-scale malvertising and hijacked search ads; operators use legitimate code-signing, sophisticated marketing infrastructure (including an Israeli-registered distributor, CANDY TECH LTD), and long dormancy periods to evade detection before delivering info-stealer and remote-access modules to corporate networks.