Hackers Attack Asus Computers | ShadowHammer

Allen St. John

Updated March 25, 2019 at 6:38 PM

Hackers Attack Asus Computers Using a Routine Software Update

Consumer Reports has no financial relationship with advertisers on this site.

A highly sophisticated cyberattack designed to look like a routine software update misled more than 57,000 Asus laptop owners, mostly in Russia, into installing malware that granted “backdoor” access to their computers, says the security company Kaspersky Lab.

The attack, named Operation ShadowHammer, was discovered by Kaspersky in late January and reported by the tech publication Motherboard on Monday. The hackers used a software update tool housed on an official Asus server and a genuine Asus certificate to push the malware out to about 1 million device owners.

It's unclear how many laptop owners in the U.S. were infected. Asus has just released an online diagnostic tool—available here— that consumers can use to see whether their laptop is among them. (We gave it a try on an Asus laptop in our labs and learned that the computer wan't affected.)

If your Asus laptop is one of those infected, the company has offered a solution, which is detailed below.

“To a user, this appeared to be a legitimate software update,” says Costin Raiu, director of the global research and analysis team at Kaspersky. “This is a very difficult attack for the average consumer to detect.”

Brian Vecci, field chief technology officer at the security firm Varonis, adds: “It’s a deeply insidious attack. The hackers got into the supply chain and tricked Asus into delivering the malware directly. The onus is on the manufacturer to lock this down.”

Privacy and security advocates say that attacks of this kind are especially troubling because they leave consumers wondering whether they should trust software updates in the future.

"Companies like Asus need to take whatever security measures are necessary to make sure this can't happen again,” says Katie McInnis, policy counsel for Consumer Reports. She notes that Asus was slow to respond with guidance for customers, given that the company knew about the attack for almost two months and remained silent on the day news of the attack broke.

What You Can Do

According to security experts, the ShadowHammer attack is unusual in other ways, too. Kaspersky confirmed that tens of thousands of machines, mostly located in Russia, were compromised when people fell for the phony update notice.

But once installed, the malware uses the backdoor access to “surgically target” 600 computers—uniquely identified via their Media Access Control addresses—with additional malware, Kaspersky reports in a blog post.

If your computer is infected, Asus suggests backing up your files and then restoring your operating system to factory settings. "This will completely remove the malware from your computer," the company explains.

You can then download the latest version of Asus Live Update (3.6.8), which is malware-free, according to Asus. The manufacturer has provided instructions on its website to help with that.

Kaspersky has also created a tool to help consumers determine whether they own a computer targeted in the attack. You simply download the app and double-click on it. (We gave this one a try, too, and got the same result.)

Consumer Reports has long advised consumers that installing regular software updates is one of the best ways to protect their devices and data. And despite the compromised update used in this exploit, that advice holds true.

“The risk of making your machine vulnerable to all kinds of malware by not installing an update is much higher than the chance of becoming the victim of an attack disguised as a update,” says Maria Rerecich, senior director of product testing for Consumer Reports.

If you use security software from a service such as Kaspersky, McAfee, or Symantec to protect your computer, this would be a good time to update that, too, she adds. For a list of CR-recommended options, click here.

This isn’t the first time that a security glitch involving Asus has left consumers vulnerable. In 2016 the company signed a consent decree with the FTC after “critical security flaws in its routers put the home networks of hundreds of thousands of consumers at risk,” according to an FTC press release.

“In many instances, Asus did not address security flaws in a timely manner and did not notify consumers about the risks posed by the vulnerable routers,” the FTC added.

Editor's Note: This article was updated to include information from Asus on how to identify a targeted laptop and remove the malware.

Consumer Reports is an independent, nonprofit organization that works side by side with consumers to create a fairer, safer, and healthier world. CR does not endorse products or services, and does not accept advertising. Copyright © 2019, Consumer Reports, Inc.

Yahoo Sports
Caitlin Clark catches fire from 3 in WNBA preseason; Arike Ogunbowale's late heroics send Wings past Fever
Caitlin Clark’s WNBA preseason debut went much like her senior year at Iowa. She hit a bunch of 3s and did so in front of a sold-out crowd.
Yahoo Sports
2024 NFL Draft grades: Denver Broncos earn one of our lowest grades mostly due to one pick
Yahoo Sports' Charles McDonald breaks down the Broncos' 2024 draft.
Yahoo Sports
NFL Power Rankings, draft edition: Did Patriots fix their offensive issues?
Which teams did the best in the NFL Draft?
Yahoo Sports
How to watch the 2024 WNBA preseason tonight: Caitlin Clark’s first Indiana Fever game time, channel and more
The WNBA preseason tips off this Friday. Here's how you can catch Caitlin Clark's first game.
Yahoo Sports
Formula 1: Miami Grand Prix sends cease and desist letter to prevent Donald Trump fundraiser during race
Race organizers say they'll revoke a Trump fundraiser's suite license if he holds an event for the former president on Sunday at the race.
Yahoo Sports
NFL Draft grades for all 32 teams | Zero Blitz
Jason Fitz and Frank Schwab join forces to recap the draft in the best way they know how: letter grades! Fitz and Frank discuss all 32 teams division by division as they give a snapshot of how fans should be feeling heading into the 2024 season. The duo have key debates on the Dallas Cowboys, New York Giants, New Orleans Saints, Los Angeles Rams, New England Patriots, Las Vegas Raiders and more.
Yahoo Sports
Lakers fire head coach Darvin Ham after just 2 seasons, latest playoff series loss to Nuggets
Despite a trip to the Western Conference finals in his first season with the team, the Lakers are now ready to look for a replacement for Darvin Ham.
Yahoo Sports
New details emerge in alleged gambling ring behind Shohei Ohtani-Ippei Mizuhara scandal
It turns out the money was going from Ohtani's bank account to an illegal bookie to ... casinos.
Yahoo Sports
The best RBs for 2024 fantasy football according to our analysts
The Yahoo Fantasy football analysts reveal their first running back rankings for the 2024 NFL season.
TechCrunch
Acura’s new all-electric SUV proves the most expensive model isn’t always the best
The first electric vehicle I ever drove was a Tesla Roadster in 2011. It was with great anticipation that I slid behind the wheel of the 2025 Acura ZDX Type S. Sure, it's a midsize SUV, but it wears the Type S moniker, a name reserved only for the most fun-to-drive in the Acura stable. On launch, the ZDX will be available in A-Spec and Type S trims -- both of which come equipped with a 102 kWh battery.
Yahoo Finance
CVS stock plunges after earnings numbers one analyst 'did not even believe'
CVS warns it could cede Medicare Advantage market share as reimbursement rates pressure the company.
Yahoo Sports
Fantasy Baseball Waiver Wire: 7 pickups ready to improve your squad
Andy Behrens has a fresh batch of priority adds to help give your fantasy team a boost, led by a player set to make his season debut.
Yahoo Sports
Diana Taurasi’s trash-talking, in-your-face ways may be a bit of a shock to new WNBA fans
Caitlin Clark fans beware: You never know what the 20-year veteran might say … or do.
Yahoo Sports
Wide receiver rankings for fantasy football 2024
The Yahoo Fantasy football analysts reveal their first wide receiver rankings for the 2024 NFL season.
Yahoo Life Shopping
Reba McEntire, 69, relies on this wrinkle-smoothing 'holy grail' moisturizer for radiant skin
Her makeup artist swears by it for this clever foundation trick for dewy, glowing coverage.
Yahoo Sports
Tight end rankings for 2024 fantasy football 2024
The Yahoo Fantasy football analysts reveal their first tight end rankings for the 2024 NFL season.
Yahoo Sports
MLB Power Rankings: Braves move into the top spot followed by Dodgers, Phillies as injuries take a toll across the league
From the Braves to the Marlins, here's where all 30 teams stand after the season's first month.
Yahoo Sports
NFL to allow players to wear protective Guardian Caps in games beginning with 2024 season
The NFL will allow players to wear protective Guardian Caps during games beginning with the 2024 season. The caps were previously mandated for practices.
Yahoo Sports
Ex-Florida State QB and 1999 Fiesta Bowl starter Marcus Outzen dies at 46
The Seminoles lost 23-16 to Tennessee in the first-ever BCS title game.
Yahoo Sports
Tiger Woods explains viral Masters tree meme, daughter’s ‘negative’ relationship with golf while promoting ‘Sun Day Red’
Jimmy Fallon asked Tiger Woods all about his incredible handshake with Verne Lundquist at the Masters on Tuesday night.

News

Life

Entertainment

Finance

Sports

New on Yahoo

Hackers Attack Asus Computers | ShadowHammer

What You Can Do

Recommended Stories

Caitlin Clark catches fire from 3 in WNBA preseason; Arike Ogunbowale's late heroics send Wings past Fever

2024 NFL Draft grades: Denver Broncos earn one of our lowest grades mostly due to one pick

NFL Power Rankings, draft edition: Did Patriots fix their offensive issues?

How to watch the 2024 WNBA preseason tonight: Caitlin Clark’s first Indiana Fever game time, channel and more

Formula 1: Miami Grand Prix sends cease and desist letter to prevent Donald Trump fundraiser during race

NFL Draft grades for all 32 teams | Zero Blitz

Lakers fire head coach Darvin Ham after just 2 seasons, latest playoff series loss to Nuggets

New details emerge in alleged gambling ring behind Shohei Ohtani-Ippei Mizuhara scandal

The best RBs for 2024 fantasy football according to our analysts

Acura’s new all-electric SUV proves the most expensive model isn’t always the best

CVS stock plunges after earnings numbers one analyst 'did not even believe'

Fantasy Baseball Waiver Wire: 7 pickups ready to improve your squad

Diana Taurasi’s trash-talking, in-your-face ways may be a bit of a shock to new WNBA fans

Wide receiver rankings for fantasy football 2024

Reba McEntire, 69, relies on this wrinkle-smoothing 'holy grail' moisturizer for radiant skin

Tight end rankings for 2024 fantasy football 2024

MLB Power Rankings: Braves move into the top spot followed by Dodgers, Phillies as injuries take a toll across the league

NFL to allow players to wear protective Guardian Caps in games beginning with 2024 season

Ex-Florida State QB and 1999 Fiesta Bowl starter Marcus Outzen dies at 46

Tiger Woods explains viral Masters tree meme, daughter’s ‘negative’ relationship with golf while promoting ‘Sun Day Red’