Asus unknowingly pushed malware on thousands of computers: Kaspersky


Posted at Mar 26 2019 06:46 PM | Updated as of Mar 26 2019 09:25 PM

MANILA - (UPDATE) Taiwanese electronics firm Asus unknowingly pushed malware to thousands of computers after one of its servers was hacked last year, potentially affecting more than one million people, Russian cybersecurity firm Kaspersky Lab said.

More than 57,000 people installed the malicious backdoor on their Asus computers after hackers attacked a server for the company's live software update tool, Kaspersky said in an article posted on its website on Monday.

"The trojanised utility was signed with a legitimate certificate and was hosted on the official Asus server dedicated to updates, and that allowed it to stay undetected for a long time," the firm said.

Asus meanwhile acknowledged that its Live Update tool had been hacked, but said that only "a small number of devices had been implanted with malicious code."

The company did not specify how many devices were affected.

The Taiwanese electronics firm, which makes computers, laptops, smartphones and other devices, added that it had upgraded its software to "prevent any malicious manipulation in the form of software updates or other means."

It said it also introduced "multiple security verification mechanisms" and "implemented an enhanced end-to-end encryption mechanism" following the attack.

"ASUS customer service has been reaching out to affected users and providing assistance to ensure that the security risks are removed."

Kaspersky said that its ongoing investigation found that hackers had deployed the same techniques against software from three other companies. 

Kaspersky uncovered the Asus attack, which it dubbed "ShadowHammer," in January after adding a new supply-chain detection technology to its scanning tool and is planning to release a full report on it next month.

The incident highlights the growing threat from so-called "supply-chain attacks" where malware is installed on systems during the manufacturing or assembling process or through later updates, analysts say.

- With a report from Agence France-Presse