Sunday, December 15, 2019
  • DEF CON 27, Social Engineering Village, ‘Chris Kirsch’s ‘Psychic Cold Reading Techniques’
  • XKCD, Timeline of the Universe
  • Idaptive Release 19.6 is Now Available
  • DEF CON 27, Social Engineering Village, Chris Hadnagy’s ‘SEVillage 10 Year Anniversary: A Look Back’
  • Single Sign-On Solutions for Education

Security Boulevard

The Home of the Security Bloggers Network

Community Chats Webinars Library
  • Home
    • Cybersecurity News
    • Features
    • Industry Spotlight
    • News Releases
  • Security Bloggers Network
    • Latest Posts
    • Contributors
    • Syndicate Your Blog
    • Write for Security Boulevard
  • Webinars
    • Upcoming
    • On-Demand
  • Chat
    • Security Boulevard Chat
    • Marketing InSecurity Podcast
  • Library

  • Analytics
  • AppSec
  • CISO
  • Cloud
  • DevOps
  • GRC
  • Identity
  • Incident Response
  • IoT / ICS
  • Threats / Breaches
  • More
    • Blockchain / Digital Currencies
    • Careers
    • Cyberlaw
    • Mobile
    • Social Engineering
  • Humor
Data Security Malware Security Bloggers Network 

Home » Cybersecurity » Data Security » ASUS pushes out urgent security update after attackers hacked its automatic Live Update tool

ASUS pushes out urgent security update after attackers hacked its automatic Live Update tool

by Graham Cluley on March 27, 2019

Taiwan-based technology giant ASUS is advising concerned customers to run a newly-created diagnostic tool on their Windows computers after hackers pushed out malware to what some security researchers have estimated to be as many as one million PCs using ASUS’s own Live Update software tool.

As Motherboard reported earlier this week, researchers at Kaspersky discovered that malicious hackers had successfully planted malware posing as an official ASUS security update onto ASUS’s servers and signed it with two of the company’s legitimate digital certificates.

In its own confirmation of the incident, Symantec revealed that at least 13,000 computers belonging to its customers were infected with the malicious software update pushed from ASUS’s Live Update server last year.

Upon installation, the malicious update received by ASUS notebooks launched a scan to determine if it was running on one of the 600 unique devices that the hackers were targeting, all with the intention of downloading further malware.

The supply-chain attack, which has been dubbed “Operation ShadowHammer,” has raised a number of questions including:

  • How was ASUS’s infrastructure compromised?
  • How did the hackers manage to get hold of ASUS’s digital certificates in order to sign the code to make it appear as though it really were from ASUS?
  • Who was behind the attack, and why were they targeting those 600-or-so PCs?

Right now, we don’t have answers for any of those questions, though many think the attack’s sophisticated and targeted nature could mean that state-sponsored hackers, perhaps with espionage in mind, were responsible for the campaign.

There aren’t any additional details in ASUS’s press statement, a notice which mainly reviews the details of the incident:

A small number of devices have been implanted with malicious code through a sophisticated attack on our Live Update servers in an attempt to target a very small and (Read more...)

*** This is a Security Bloggers Network syndicated blog from The State of Security authored by Graham Cluley. Read the original post at: https://www.tripwire.com/state-of-security/featured/asus-security-update-live-update-tool-hacked/

March 27, 2019March 27, 2019 Graham Cluley Asus, Featured Articles, IT Security and Data Protection, Malware, ShadowHammer, supply chain
  • ← AD DS and Zero Trust Security
  • WordPress Giribaz File Manager Vulnerability Actively Exploited in the Wild →
Featured Blog

Enzoic

Automate Password Policy & NIST Password Guidelines

Enzoic

Microsoft Highlights The Risk of Stolen Passwords

Enzoic

Enzoic Customer Profile: IDShield

Enzoic

Old vs. New Methods for Employee Password Hardening

Subscribe to our Newsletters

Get breaking news, free eBooks and upcoming events delivered to your inbox.
  • View Security Boulevard Privacy Policy

Most Read on the Boulevard

Predictions 2020: Don’t Forget the Current Threats
Trend Micro Looks to the Cloud for Security
Encryption Wars, Part IV: Barr vs. Big Tech
Cyberattacks: Top 5 Ways You Could Be Hacked in 2020
Cyberhaven Applies Behavioral Analytics to Better Secure Data
Year in Review: 18 Cybersecurity Statistics and Research Figures Summarizing 2019
Plundervolt! A new Intel Processor ‘undervolting’ Vulnerability
2020 Cybersecurity Trends: Measuring Cyber Risk and its Effect on Business Risk by Robert Potter
Cybersecurity for Building Automation Systems
Cost of data breaches in 2019: The 4 worst hits on the corporate wallet

Upcoming Webinars

There are no upcoming webinars at this time.

Download Free eBook

The Next Generation of Application Security

Recent Security Boulevard Chats

  • Cloud, DevSecOps and Network Security, All Together?
  • Security-as-Code with Tim Jefferson, Barracuda Networks
  • ASRTM with Rohit Sethi, Security Compass
  • Deception: Art or Science, Ofer Israeli, Illusive Networks
  • Tips to Secure IoT and Connected Systems w/ DigiCert

Industry Spotlight

Cyberattacks: Top 5 Ways You Could Be Hacked in 2020
Cybersecurity Industry Spotlight Security Awareness Security Boulevard (Original) 

Cyberattacks: Top 5 Ways You Could Be Hacked in 2020

December 13, 2019 Michael Bruemmer | 2 days ago 0
Predictions 2020: Don’t Forget the Current Threats
Cybersecurity Industry Spotlight Network Security Security Boulevard (Original) 

Predictions 2020: Don’t Forget the Current Threats

December 12, 2019 Craig DAbreo | 3 days ago 0
Predictions 2020: Data Security Next Year and Beyond
Cybersecurity Data Security Industry Spotlight Security Boulevard (Original) 

Predictions 2020: Data Security Next Year and Beyond

December 10, 2019 Ameesh Divatia | Dec 10 0

Top Stories

Hacking Ring Security Cameras: Amazon Makes it Easy
Cybersecurity Endpoint Featured Identity & Access IoT & ICS Security News Security Boulevard (Original) Spotlight 

Hacking Ring Security Cameras: Amazon Makes it Easy

December 13, 2019 Richi Jennings | 1 day ago 0
Cyberhaven Applies Behavioral Analytics to Better Secure Data
Cybersecurity Data Security Featured News Security Boulevard (Original) Spotlight 

Cyberhaven Applies Behavioral Analytics to Better Secure Data

December 12, 2019 Michael Vizard | 2 days ago 0
Apple Passive-Aggressive PR Sparks Privacy Fear (Yet Again)
Cybersecurity Endpoint Featured Mobile Security News Security Boulevard (Original) Spotlight Threats & Breaches 

Apple Passive-Aggressive PR Sparks Privacy Fear (Yet Again)

December 6, 2019 Richi Jennings | Dec 06 0

Security Humor

via the comic delivery system monikered Randall Munroe at XKCD !

XKCD, Timeline of the Universe

Join the Community

  • Add your blog to Security Bloggers Network
  • Write for Security Boulevard
  • Bloggers Meetup and Awards
  • Ask a Question
  • Email: info@securityboulevard.com

Useful Links

  • About
  • Media Kit
  • Sponsors Info
  • Copyright
  • TOS
  • Privacy Policy
  • DMCA Compliance Statement

Other Mediaops Sites

  • Container Journal
  • DevOps.com
  • DevOps Connect
  • DevOps Institute
Copyright © 2019 MediaOps Inc. All rights reserved.
Our website uses cookies. By continuing to browse the website you are agreeing to our use of cookies. For more information on how we use cookies and how you can disable them, please read our Privacy Policy.