Thursday, March 28, 2019

ASUS Live Update Utility Was Backdoored by APT Group



There are two method to check your laptop is it being attacked:
1. Use Asus tools - https://dlcdnets.asus.com/pub/ASUS/nb/Apps_for_Win10/ASUSDiagnosticTool/ASDT_v1.0.1.0.zip
2. Go to https://shadowhammer.kaspersky.com/ or use Kaspersky tool https://kas.pr/shadowhammer

Solution:
1. Upgrade ASUS Live Update Utility to v3.6.8 or above https://www.asus.com/support/FAQ/1018727/
2. Uninstall ASUS Live Update Utility

Reference:
https://securelist.com/operation-shadowhammer/89992/

https://shadowhammer.kaspersky.com/

https://motherboard.vice.com/en_us/article/pan9wn/hackers-hijacked-asus-software-updates-to-install-backdoors-on-thousands-of-computers

https://www.fireeye.com/current-threats/apt-groups.html

https://www.asus.com/tw/News/IsyIB2Q5VN9N1Y3w

https://www.kaspersky.com/blog/shadow-hammer-teaser/26149/

Print Friendly and PDF
Share/Bookmark

No comments:

Post a Comment