Hackers attack over a million Asustek users through backdoor software update

April 2nd, 2019 (last updated)

Fakty Miami News – Hackers targeted “hundreds of thousands” of Asustek computer owners by pushing a backdoor update software tool from the computer maker’s own servers, cyber security firm Kaspersky Lab said on Monday.

Kaspersky said the attack, which took place between June and November 2018, is possibly affecting over a million users all over the world.

Cyber security firm Symantec’s spokeswoman Jennifer Duffourg also confirmed the software supply chain attack against Asustek users.

“Based on our analysis, trojanized updates via URIs were deployed by ASUS’ live update server between June and late October 2018. These updates were digitally signed using two certificates from ASUS,” Duffourg said.

The hackers were targeting an unknown pool of users, who were identified by their network adapters’ MAC addresses, Kaspersky said.

More than 57,000 Kaspersky users installed the backdoor version of ASUS Live Update, the report said.

Kaspersky said they informed Asustek about the attack on Jan. 31, 2019.

sources:Reuters

  • Fakty Miami

    Poland, Germany get largest slices

    Poland will enjoy the upper limit of €2 billion imposed by the Commission’s new plan The European Commission’s €7.5-billion-strong Just Transition Fund (JTF) is set to allocate €2 billion to Poland and €877 million to [Read more]
  • Fakty Miami

    Poland Resigns from the F-35 Offset

    January 15th, 2020 (last updated) Polish Offset Committee adopted the MoD’s recommendation to resign from making use of offset in case of the F-35 acquisition. “The American proposals have not been satisfying for us. These [Read more]
  • Fakty Miami

    Poland tops 1.3 GW of PV capacity

    January 15th, 2020 (last updated) With around 300 MW of newly installed capacity in the final quarter of 2019, Poland has maintained its promise to reach 1.3 GW of solar by the end of December. [Read more]