In addition to confirming the attack and announcing the release of a new version of the software that allowed the attack, the company created a diagnostic tool so that users of ASUS notebooks can verify if their equipment was affected.
Yesterday, ASUS released an official statement in which it recognizes that the ASUS Live Update tool, which is installed by default on their computers and is used to send the latest updates, was compromised with malicious code as part of a supply chain attack carried forward by a group of APT.
According to the Asian company, only a small number of computers have suffered the implementation of malicious code as a result of the attack on the Live Update software servers, which “had as target of attack a small and specific group of users”, explains . The company says it has been contacting users affected by this attack and offering assistance to guarantee its security again. In addition, it states that only the version used for laptops was affected by the attack and that the other devices are safe.
On the other hand, ASUS launched a new version of Live Update software (3.6.8) that includes improvements that prevent the possibility of a new manipulation by an attacker. In addition, the company created a diagnostic tool for ASUS computer users to verify if their equipment was affected and invites users to test it as a precautionary measure. It comes as a compressed file and can be downloaded here.
In case of being affected by the threat, ASUS recommends users to quickly backup their files and restore the operating system to the factory settings, as this will remove malware from the computer. It also advises updating passwords.
On the supply chain attack that affected ASUS
This week, media headlines in different parts of the world echoed a recent investigation published by Kaspersky in which it was revealed that the Taiwanese company had been the victim of a supply chain attack in which cybercriminals had compromised a server that the multinational uses for the Live tool to install a malicious backdoor, called ShadowHammer, on ASUS computers.
We recommend users who have doubts about how to install the ASUS Live Update 3.6.8 update to visit the following official page.