Menu
Hackers attacked one million-plus Asus users through malicious update

Hackers attacked one million-plus Asus users through malicious update

Kaspersky Lab and Symantec highlight "backdoor" access

Credit: Dreamstime

Hackers were able to deliver malware to the more one million-plus Asus computer owners last year by hijacking the vendor’s software update system, security researchers have revealed.

Moscow-based cyber security provider Kaspersky Lab said the attack took place between June and November last year and was used to deliver a software update with a "backdoor" that would give hackers access to infected machines.

"We are not able to calculate the total count of affected users based only on our data; however, we estimate that the real scale of the problem is much bigger and is possibly affecting over a million users worldwide," Kaspersky said in a blog post.

"The cyber criminals behind it were not interested in all of them, however - they targeted only 600 specific MAC addresses, for which the hashes were hardcoded into different versions of the utility.

"While investigating this attack, we found out that the same techniques were used against software from three other vendors. Of course, we have notified ASUS and other companies about the attack."

Researchers at cyber security specialist Symantec were also able to identify the attack against Asus users, a Symantec spokeswoman said.

"Symantec telemetry shows that at least 13,000 computers received the Trojanised updates," a Symantec blog added. "80 per cent of victims were consumers and 20 per cent were from organisations. Our telemetry shows an even spread of victims across the globe."

Asus said it would provide a statement on Tuesday.

The attack, which was first reported by technology news website Motherboard, shows how hackers are able to leverage the size of technology companies and their suppliers to reach large numbers of victims.

Kaspersky said that more than 57,000 of its users had downloaded and installed the compromised Asus update but the hackers intended to target a smaller number of unknown victims.

Kaspersky said it informed Asus about the attack in January and was assisting the company with its investigation.

(Reporting by Vibhuti Sharma in Bengaluru, Angela Moon in New York and Jack Stubbs in London; Editing by James Emmanuel and David Goodman)


Follow Us

Join the newsletter!

Or

Sign up to gain exclusive access to email subscriptions, event invitations, competitions, giveaways, and much more.

Membership is free, and your security and privacy remain protected. View our privacy policy before signing up.

Error: Please check your email address.

Tags PCsymantecasuskaspersky lab

Events

Featured

Slideshows

Meet the Reseller News 30 Under 30 Tech Awards 2020 winners

Meet the Reseller News 30 Under 30 Tech Awards 2020 winners

This year’s Reseller News 30 Under 30 Tech Awards were held as an integral part of the first entirely virtual Emerging Leaders​ forum, an annual event dedicated to identifying, educating and showcasing the New Zealand technology market’s rising stars. The 30 Under 30 Tech Awards 2020 recognised the outstanding achievements and business excellence of 30 talented individuals​, across both young leaders and those just starting out. In this slideshow, Reseller News honours this year's winners and captures their thoughts about how their ideas of leadership have changed over time.​

Meet the Reseller News 30 Under 30 Tech Awards 2020 winners
Reseller News Exchange Auckland: Beyond the myths — how partners can master cloud security

Reseller News Exchange Auckland: Beyond the myths — how partners can master cloud security

This exclusive Reseller News Exchange event in Auckland explored the challenges facing the partner community on the cloud security frontier, as well as market trends, customer priorities and how the channel can capitalise on the opportunities available. In association with Arrow, Bitdefender, Exclusive Networks, Fortinet and Palo Alto Networks. Photos by Gino Demeer.

Reseller News Exchange Auckland: Beyond the myths — how partners can master cloud security
Reseller News welcomes industry figures at 2020 Hall of Fame lunch

Reseller News welcomes industry figures at 2020 Hall of Fame lunch

Reseller News welcomed 2019 inductees - Leanne Buer, Ross Jenkins and Terry Dunn - to the fourth running of the Reseller News Hall of Fame lunch, held at the French Cafe in Auckland. The inductees discussed the changing face of the IT channel ecosystem in New Zealand and what it means to be a Reseller News Hall of Fame inductee. Photos by Gino Demeer.

Reseller News welcomes industry figures at 2020 Hall of Fame lunch
Show Comments