ASUS has addressed the hack affecting their updates
In our previous blog article, we spoke about the backdoors that were inadvertently installed on thousands of computers through an infection on an ASUS server.
https://rhynonetworks.com/asus-software-updates-hijacked-by-hackers/
ASUS has now addressed the issue and they have released a new version of their Live Update software for laptops that addresses the ShadowHammer backdoor attack.
Along with implementing the fix of the Live Update software, ASUS has also stated that they’ve introduced multiple security verification mechanisms in order to prevent any malicious manipulation in the form of software updates or other means. They’ve also implemented an enhanced end-to-end encryption mechanism.
Thankfully, ASUS also stated that they have strengthened their server-to-end-user software architecture to prevent similar attacks from happening in the future.
While ShadowHammer targeted a very small and specific user group, the malware is believed to be an APT, or Advanced Persistent Threat. An APT is regarded as a state-backed assault against organizations rather than everyday users.
Also, only notebooks were affected and other ASUS devices are safe at this time from this particular malware.
ASUS has created an online security diagnostic tool that you can run to see if your system is affected. If you’re still concerned, you can run it as a precaution. The tool can be found at: https://dlcdnets.asus.com/pub/ASUS/nb/Apps_for_Win10/ASUSDiagnosticTool/ASDT_v1.0.1.0.zip
As always, if we can be of help with your network or computer, give us a call here at RHYNO Networks. (855) 749-6648
