Hackers said to have attacked Asus users via malicious update

March 26, 2019 09:41
Hackers are believed to have broken into Asus' software update system to deliver malware to some users last year. Photo: Reuters

Hackers were able to deliver malware to the more one million Asus computer owners last year by hijacking the company’s software update system, security researchers say.

According to Moscow-based cyber security provider Kaspersky Lab, the attack took place between June and November last year and was used to deliver a software update with a “backdoor” that would give hackers access to infected machines, Reuters reports.

“We are not able to calculate the total count of affected users based only on our data; however, we estimate that the real scale of the problem is much bigger and is possibly affecting over a million users worldwide,” Kaspersky was quoted as saying in a blog post.

Researchers at cyber security company Symantec were also able to identify the attack against Asus users, a Symantec spokeswoman said.

The attack, which was first reported by technology news website Motherboard, shows how hackers are able to leverage the size of technology companies and their suppliers to reach large numbers of victims, Reuters noted.

Kaspersky said more than 57,000 of its users had downloaded and installed the compromised Asus update.

The company said it informed Asus about the attack in January and that it is assisting the Taiwan firm with its investigation.

– Contact us at [email protected]