rjohnson11
EVGA Forum Moderator
- Total Posts : 102262
- Reward points : 0
- Joined: 2004/10/05 12:44:35
- Location: Netherlands
- Status: offline
- Ribbons : 84
https://motherboard.vice.com/en_us/article/pan9wn/hackers-hijacked-asus-software-updates-to-install-backdoors-on-thousands-of-computers Hackers have compromised the Live Update servers of ASUS, making them push malware to thousands of computers configured to fetch and install updates automatically. These include not just PC motherboards, but also pre-builts such as notebooks and desktops by ASUS. Smartphones and IoT devices by ASUS are also affected. Hackers have managed to use valid ASUS digital certificates to masquerade their malware as legitimate software updates from ASUS. Kaspersky Labs says that as many as half a million devices have fallen prey to malware pushed to them by ASUS. The cybersecurity firm says it discovered the malware in January 2019 when implementing a new supply-chain detection technology, and informed ASUS by late-January. Kaspersky even sent a technically-sound representative to meet with ASUS in February. Kaspersky claims that ASUS has since been "largely unresponsive since then and has not notified ASUS customers about the issue." ASUS is already drowning in bad-rep from the PC enthusiast community for its Armoury Crate feature that lets motherboard BIOS push software to a Windows installation through an ACPI table dubbed "the vendor's rootkit," which ASUS enabled by default on new motherboards. Who knows what recent motherboard BIOS updates have pushed into your PC through this method.
|
Sajin
EVGA Forum Moderator
- Total Posts : 49167
- Reward points : 0
- Joined: 2010/06/07 21:11:51
- Location: Texas, USA.
- Status: online
- Ribbons : 199
Re: Hackers Get to ASUS Live Update Servers, Plant Malware in Thousands of Computers
2019/03/26 13:26:52
(permalink)
Not good.
|
atfrico
Omnipotent Enthusiast
- Total Posts : 12753
- Reward points : 0
- Joined: 2008/05/20 16:16:06
- Location: <--Dip, Dip, Potato Chip!-->
- Status: offline
- Ribbons : 25
Re: Hackers Get to ASUS Live Update Servers, Plant Malware in Thousands of Computers
2019/03/26 19:02:28
(permalink)
T hose who abuse power, are nothing but scumbags! The challenge of power is how to use it and not abuse it. The abuse of power that seems to create the most unhappiness is when a person uses personal power to get ahead without regards to the welfare of others, people are obsessed with it. You can take a nice person and turn them into a slob, into an insane being, craving power, destroying anything that stands in their way. Affiliate Code: 3T15O1S07G
|
the_Scarlet_one
formerly Scarlet-tech
- Total Posts : 24581
- Reward points : 0
- Joined: 2013/11/13 02:48:57
- Location: East Coast
- Status: offline
- Ribbons : 79
Re: Hackers Get to ASUS Live Update Servers, Plant Malware in Thousands of Computers
2019/03/26 19:41:40
(permalink)
I never allow the automatic update stuff run, other than Windows security patches alone. I update everything else manually when I want it updated.
|
Nereus
Captain Goodvibes
- Total Posts : 18917
- Reward points : 0
- Joined: 2009/04/09 20:05:53
- Location: Brooklyn, NYC.
- Status: offline
- Ribbons : 58
Re: Hackers Get to ASUS Live Update Servers, Plant Malware in Thousands of Computers
2019/03/26 21:22:03
(permalink)
the_Scarlet_one I never allow the automatic update stuff run, other than Windows security patches alone. I update everything else manually when I want it updated.
Same here, fortunately. *glances suspiciously at Maximus XI mobo* Very, VERY poor of ASUS not to immediately act on the issue.
|
Brad_Hawthorne
Insert Custom Title Here
- Total Posts : 23174
- Reward points : 0
- Joined: 2004/06/06 16:13:06
- Location: Dazed & Confused
- Status: offline
- Ribbons : 39
Re: Hackers Get to ASUS Live Update Servers, Plant Malware in Thousands of Computers
2019/03/26 22:20:04
(permalink)
Anything automated related to security and updates is a prime target. Not sure why you stated you trust Microsoft to auto update? They aren't magically exempt from security exploits.
|
Hoggle
EVGA Forum Moderator
- Total Posts : 10101
- Reward points : 0
- Joined: 2003/10/13 22:10:45
- Location: Eugene, OR
- Status: offline
- Ribbons : 4
Re: Hackers Get to ASUS Live Update Servers, Plant Malware in Thousands of Computers
2019/03/26 22:27:12
(permalink)
That isn’t good. I wonder what the source of it and the intention. I would use caution on opening an attachment from anyone and be double checking any stories posted on social media for a while after this.
|
GTXJackBauer
Omnipotent Enthusiast
- Total Posts : 10323
- Reward points : 0
- Joined: 2010/04/19 22:23:25
- Location: (EVGA Discount) Associate Code : LMD3DNZM9LGK8GJ
- Status: offline
- Ribbons : 48
Re: Hackers Get to ASUS Live Update Servers, Plant Malware in Thousands of Computers
2019/03/27 03:07:17
(permalink)
Well I expect not too many to worry on these forums about a ASUS board since it is EVGA forums. lol
I have a X58 ASUS Sabertooth somewhere collecting dust. The intel X58SO is still trucking along (Folding) while the ASUS board in general started acting funky a while back, knowing stories about their CS, I didn't bother.
Use this Associate Code at your checkouts or follow these instructions for Up to 10% OFF on all your EVGA purchases: LMD3DNZM9LGK8GJ
|
the_Scarlet_one
formerly Scarlet-tech
- Total Posts : 24581
- Reward points : 0
- Joined: 2013/11/13 02:48:57
- Location: East Coast
- Status: offline
- Ribbons : 79
Re: Hackers Get to ASUS Live Update Servers, Plant Malware in Thousands of Computers
2019/03/27 08:38:31
(permalink)
Brad_Hawthorne Anything automated related to security and updates is a prime target. Not sure why you stated you trust Microsoft to auto update? They aren't magically exempt from security exploits.
I’ve reread my post numerous times and don’t see anyone stating they trusted Microsoft. I don’t see anywhere that states they are exempt from security patches. I do allow it to auto update security patches because it is “recommended” to install it. Because if all else fails I can contact them and harass them for letting an issue through. If I don’t update the security patches at all, the computer would be far more vulnerable all the time, supposedly.
|
Cool GTX
EVGA Forum Moderator
- Total Posts : 30983
- Reward points : 0
- Joined: 2010/12/12 14:22:25
- Location: Folding for the Greater Good
- Status: offline
- Ribbons : 122
Re: Hackers Get to ASUS Live Update Servers, Plant Malware in Thousands of Computers
2019/03/27 08:58:07
(permalink)
I'm just amazed that in these present times a major technology firm would be so lax on securing their own servers .... sigh Asus's lack of Owning the problem speak volumes of their Corporate Valves
|
Brad_Hawthorne
Insert Custom Title Here
- Total Posts : 23174
- Reward points : 0
- Joined: 2004/06/06 16:13:06
- Location: Dazed & Confused
- Status: offline
- Ribbons : 39
Re: Hackers Get to ASUS Live Update Servers, Plant Malware in Thousands of Computers
2019/03/27 16:18:48
(permalink)
Cool GTX I'm just amazed that in these present times a major technology firm would be so lax on securing their own servers .... sigh Asus's lack of Owning the problem speak volumes of their Corporate Valves
It's an inside job from a disgruntled former ASUS employee. Could as just as soon been Microsoft, so I don't trust any auto updates.
|
Nereus
Captain Goodvibes
- Total Posts : 18917
- Reward points : 0
- Joined: 2009/04/09 20:05:53
- Location: Brooklyn, NYC.
- Status: offline
- Ribbons : 58
Re: Hackers Get to ASUS Live Update Servers, Plant Malware in Thousands of Computers
2019/03/28 19:01:25
(permalink)
Update from ASUS: Only the version of Live Update used for notebooks has been affected. All other devices remain unaffected.
|