![]() ![]() However, in its press release today, ASUS downplayed this estimate and said that just "a small number of devices have been implanted with malicious code." Initial assessments by Kaspersky Lab and Symantec estimated the number of infected users ranging between 500,000 and 1,000,000 users. The company's statement comes after tech news site Motherboard revealed yesterday that a group of nation-state hackers compromised ASUS' Live Update infrastructure and delivered a backdoored version of the ASUS Live Update tool. The company said ASUS Live Update v3.6.8 "introduced multiple security verification mechanisms to prevent any malicious manipulation in the form of software updates or other means, and implemented an enhanced end-to-end encryption mechanism."ĪSUS also said it updated and strengthened its "server-to-end-user software architecture to prevent similar attacks from happening in the future." ASUS: Only notebook users were targeted LastPass vs 1Password: Battle of the password manager titansĪSUS Live Update version 3.6.8 contains the aforementioned fixes, the hardware vendor announced in a press release today.Ukraine reportedly adopts Clearview AI to track Russian invaders.Working for a ransomware gang is surprisingly mundane.CaddyWiper: More destructive malware strikes Ukraine.That attack targeted the financial industry.41 impressive questions to ask in a job interview It isn’t clear who or what ShadowHammer was designed to attack, but the security firm said it found a link to what it called BARIUM, involved in a similar supply-chain attack in 2017 called ShadowPad. It could involve any number of manufacturing partners. The target, Kaspersky said, was the supply chain, a network of companies supplying parts to a particular product. If ShadowHammer allowed the PC to download malicious BIOS software from another site, that software could take over the entire PC. The Asus Live Update software is designed to look for new versions of the programs released on the Asus website and then automatically update a PC’s BIOS, drivers, and applications. The Live Update software can be downloaded from the Asus site, and it also comes pre-loaded on PCs. ![]() (The investigation is still in progress, Kaspersky said.) Kaspersky said that the ShadowHammer attack had been detected worldwide, most commonly in Russia and Germany, with about five percent of victims in the United States.įrom a security standpoint, the most disturbing aspect of the malware is that it was digitally signed with legitimate security certificates, the stamp of authenticity that would make them indistinguishable from a real update. What security vendor Kaspersky is calling ShadowHammer was actually a targeted attack at a small number of users. ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. Archives
December 2022
Categories |