Geeks for your information News Privacy & Security News v
Hijacked ASUS Live Update software installs backdoors on countless PCs worldwide
Hijacked ASUS Live Update software installs backdoors on countless PCs worldwide
silversurfer Offline
Staff Member
******
Posts: 3,885
Threads: 3,283
Thanks Received: 5,064 in 3,838 posts
Thanks Given: 6,200
Joined: 12 September 18
#1
Exclamation  25 March 19, 18:16
Quote:A cybercriminal campaign focused on targeting the supply chain through the exploitation of ASUS Live Update software may have involved the installation of backdoors on over one million PCs.
 
On Monday, researchers from Kaspersky Labs said the attack was first detected in January 2019. It is believed that the campaign, dubbed Operation ShadowHammer, took place between June and November 2018 and has potentially compromised countless users -- despite there being only a small list of individuals the hackers wished to target.

Operation ShadowHammer leverages the ASUS Live Update Utility, which comes pre-installed on the majority of ASUS computers.
 
ASUS Live Update is intended for ensuring computer systems, such as drivers, apps, BIOS, and UEFI all receive upgrades and patches when they are due, but it is this valuable utility that cyberattackers have managed to compromise.
 
Kaspersky was able to track down over 57,000 of its own customers that unwittingly downloaded and installed the malicious software and while the cybersecurity firm is unable to provide direct figures of all those affected, the firm says that it estimates "the real scale of the problem is much bigger and is possibly affecting over a million users worldwide."

SOURCE: https://www.zdnet.com/article/supply-cha...-software/
[-] The following 1 user says Thank You to silversurfer for this post:
  • harlan4096
Find
Reply
silversurfer Offline
Staff Member
******
Posts: 3,885
Threads: 3,283
Thanks Received: 5,064 in 3,838 posts
Thanks Given: 6,200
Joined: 12 September 18
#2
Exclamation  26 March 19, 16:00 (This post was last modified: 26 March 19, 16:01 by silversurfer.)
ASUS releases fix for Live Update tool abused in ShadowHammer attack
 
Quote:ASUS Live Update version 3.6.8 contains the aforementioned fixes, the hardware vendor announced in a press release today.
 
The company said ASUS Live Update v3.6.8 "introduced multiple security verification mechanisms to prevent any malicious manipulation in the form of software updates or other means, and implemented an enhanced end-to-end encryption mechanism."
 
ASUS also said it updated and strengthened its "server-to-end-user software architecture to prevent similar attacks from happening in the future."

SOURCE: https://www.zdnet.com/article/asus-relea...er-attack/
[-] The following 1 user says Thank You to silversurfer for this post:
  • harlan4096
Find
Reply


Forum Jump:


Users browsing this thread: 1 Guest(s)
[-]
Welcome
You have to register before you can post on our site.

Username/Email:


Password:

[-]
Recent Posts
NanaZip 6.0 Update 7 (6.0.1711.0)
NanaZip 6.0 Update...harlan4096 — 06:10
Vivaldi 7.9 Build 3970.64
Vivaldi 7.9 Build ...harlan4096 — 06:09
Thunderbird 150.0.2 & Thunderbird 140.10...
Thunderbird 150.0....harlan4096 — 06:08
Brave v1.90.121 (Chromium 148.0.7778.96)
Release v1.90.121 ...harlan4096 — 06:07
QOwnNotes
26.5.6 Note folde...Kool — 06:07

[-]
Birthdays
Today's Birthdays
avatar (39)omapek
avatar (48)Geraldtuh
Upcoming Birthdays
avatar (28)akiratoriyama
avatar (48)Jerrycix
avatar (40)awedoli
avatar (82)WinRARHowTo
avatar (38)owysykan
avatar (49)beautgok
avatar (39)axuben
avatar (45)talsmanthago
avatar (31)mocetor
avatar (46)piomaibhaict
avatar (51)kingbfef
avatar (38)izenesiq
avatar (40)ihijudu
avatar (45)tiojusop
avatar (42)Damiennug
avatar (40)acoraxe
avatar (49)contjrat
avatar (41)axylisyb
avatar (44)tukrublape
avatar (44)knigiJow
avatar (46)1stOnecal
avatar (50)Mirzojap
avatar (36)idilysaju
avatar (40)GregoryRog
avatar (45)mediumog
avatar (40)odukoromu
avatar (46)Joanna4589

[-]
Online Staff
There are no staff members currently online.

>