Kaspersky has uncovered a backdoor embedded in the official Windows installer of Daemon Tools, a widely used disc imaging application. Security researchers believe Chinese-speaking hackers carried out a supply chain attack that began on April 8, compromising thousands of systems. The attack primarily targeted organizations in retail, scientific, manufacturing, and government sectors in Russia, Belarus, and Thailand. The backdoor remains active, allowing deployment of additional malware. Disc Soft, the developer of Daemon Tools, has confirmed it is aware of the report and is investigating with high priority. Users who installed recent versions of the software are advised to monitor antivirus alerts and assess their risk.