Welcome to DU!
The truly grassroots left-of-center political community where regular people, not algorithms, drive the discussions and set the standards.
Join the community:
Create a free account
Support DU (and get rid of ads!):
Become a Star Member
Latest Breaking News
Editorials & Other Articles
General Discussion
The DU Lounge
All Forums
Issue Forums
Culture Forums
Alliance Forums
Region Forums
Support Forums
Help & Search
Hackers attack over a million Asustek users through backdoor software update
Source: Reuters
TECHNOLOGY NEWS MARCH 25, 2019 / 11:13 AM / UPDATED 44 MINUTES AGO
Hackers attack over a million Asustek users through backdoor software update
(Reuters) - Hackers targeted “hundreds of thousands” of Asustek computer owners by pushing a backdoor update software tool from the computer maker’s own servers, cyber security firm Kaspersky Lab said on Monday.
Kaspersky said the attack, which took place between June and November 2018, is possibly affecting over a million users all over the world.
Cyber security firm Symantec’s spokeswoman Jennifer Duffourg also confirmed the software supply chain attack against Asustek users.
“Based on our analysis, trojanized updates via URIs were deployed by ASUS’ live update server between June and late October 2018. These updates were digitally signed using two certificates from ASUS,” Duffourg said.
-snip-
Hackers attack over a million Asustek users through backdoor software update
(Reuters) - Hackers targeted “hundreds of thousands” of Asustek computer owners by pushing a backdoor update software tool from the computer maker’s own servers, cyber security firm Kaspersky Lab said on Monday.
Kaspersky said the attack, which took place between June and November 2018, is possibly affecting over a million users all over the world.
Cyber security firm Symantec’s spokeswoman Jennifer Duffourg also confirmed the software supply chain attack against Asustek users.
“Based on our analysis, trojanized updates via URIs were deployed by ASUS’ live update server between June and late October 2018. These updates were digitally signed using two certificates from ASUS,” Duffourg said.
-snip-
Read more: https://www.reuters.com/article/us-asus-cyber/hackers-attack-over-a-million-asustek-users-through-backdoor-software-update-idUSKCN1R61R9