ASUS Releases Fix For Update Tool Malware Attack
It was reported yesterday how hackers had managed to infiltrate countless ASUS systems by distributing a backdoored software update tool from the company’s own servers. The hackers digitally signed the ASUS Live Update Tool with one of the company’s own code-signing certificates before sending it to ASUS’ download servers where the backdoored tool was hosted for several months in 2018. The company today confirmed that it has rolled out a fix for the malware attack.
Hackers used the backdoor in the software update tool to send malware to users’ computers through a command and control server. It’s believed that the hackers were able to get access to the company’s own code-signing certificates through the supply chain.
ASUS said today that it has released an update to thwart this malware attack which security researchers estimate targeted more than a million Asus users. The company said that only “a small number of devices’ had been implanted with malware through this attack.
The company has also said that it’s putting in place “multiple security verification mechanisms” to ensure that something like this does not happen in the future. It has also started using an “enhanced end-to-end encryption mechanism” for this purpose and has made behind-the-scenes server system improvements to thwart similar attacks in the future. One has to wonder why ASUS never did all of this in the first place.
You May Also Like
Popular Right Now
- First Shutdown of Niagara Falls in 12,000 Years: A Rare Sight to Behold
- Former Google Engineer claims that humans will achieve immortality soon
- Romotow: The Foldable Camping Trailer Inspired By A USB Flash Drive
- LYRA: Swiss Startup Unveils AR Smart Glasses for Office Work, City Life, And Traveling
- Man Caught in China Smuggling $46K Worth of Intel CPUs Wrapped Around His Waist
- iPhone 15 Pro Max may bring thinner bezels than Xiaomi and Samsung’s latest flagships
- OpenAI's new GPT-4 with a "human-level performance" scored up to 93% on SAT exams
- iPhone SE 4 could be Apple's secret weapon to 'steal' budget customers from Samsung
- Lenovo Launches New Workstations, With Aston Martin DNA
- Ubergizmo’s Best of Mobile World Congress 2023
- TCL NXTPAPER 11 Tablet With Paper-like Screen Experience
- Nothing Phone 2 Coming To The U.S. In Late 2023
- Ubergizmo’s Best Of K-Startup @ CES
- Intel Core i9-13900T Shows Extraordinary Efficiency In Early Benchmarks
- Ubergizmo’s Top 3 MIK Products @ CES 2023
- Three LG gram Laptops For 2023. The Lightest Got Even Lighter