Hackers Attack Asus Computers Using Routine Software Update

Allen St. John

Updated March 25, 2019 at 6:38 PM

Consumer Reports has no financial relationship with advertisers on this site.

A highly sophisticated cyberattack designed to look like a routine software update from the manufacturer Asus misled more than 57,000 consumers into installing malware that granted "backdoor" access to their computers, says Russia-based security company Kaspersky Lab.

The exploit, named Operation ShadowHammer, was discovered by Kaspersky in late January and reported by the tech publication Motherboard today. The hackers used a software update tool housed on an official Asus server and a genuine Asus certificate to push the malware out to about 1 million device owners, mostly in Russia.

Asus has yet to respond to requests from Consumer Reports, Kaspersky, and others with information on how people can identify and remove the ShadowHammer threat from a computer.

“To a user, this appeared to be a legitimate software update," says Costin Raiu, director of the global research and analysis team at Kaspersky. "This is a very difficult attack for the average consumer to detect."

"It's a deeply insidious attack," adds Brian Vecci, field CTO of the security firm Varonis. "The hackers got into the supply chain and tricked Asus into delivering the malware directly. The onus is on the manufacturer to lock this down."

Privacy and security advocates explain that attacks of this kind are especially troubling because they leave consumers wondering whether they should trust software updates in the future

"Companies like Asus need to take whatever security measures are necessary to make sure this can't happen again," says Katie McInnis, policy counsel for Consumer Reports. "The fact that Asus still has no guidance for customers almost two months after learning of this attack is very concerning."

What You Can Do

According to security experts, the ShadowHammer attack is unusual in other ways. Kaspersky confirmed that tens of thousands of machines, mostly located in Russia, have been affected. But, once installed, the malware uses the backdoor access to "surgically target" computers with one of 600 MAC addresses with additional malware, Kaspersky reported in a blog post.

Kaspersky has created a tool to help consumers determine if they own one of those computers. You simply download the app and double click on it. (We gave it a try on an Asus laptop in our labs and learned that the computer is not among the 600 impacted.)

To be safe, Kaspersky also advises people to make certain they have the most recent version of Asus Live Update installed on their devices. To do that, visit asus.com/support, click on the Enter Download Center button, and search for the computer model in the drop-down menu. That will take you to a support page, where you can download the latest Live Update software.

Consumer Reports has long advised consumers that installing regular software updates is one of the best ways to protect their devices and data, and, despite the compromised update used in this exploit, that advice holds true.

"The risk of making your machine vulnerable to all kinds of malware by not installing an update is much higher than the chance of becoming the victim of an attack disguised as a update," says Maria Rerecich, senior director of product testing for Consumer Reports.

If you use security software from a service such as Kaspersky, McAfee, or Symantec to protect your computer, this would be a good time to update that, too, she adds. For a list of CR-recommended options, click here.

This isn't the first time that a security glitch involving Asus has left consumers vulnerable. In 2016, the company signed a consent decree with FTC after "critical security flaws in its routers put the home networks of hundreds of thousands of consumers at risk," according to an FTC press release.

"In many instances, ASUS did not address security flaws in a timely manner and did not notify consumers about the risks posed by the vulnerable routers," the FTC added.

Consumer Reports is an independent, nonprofit organization that works side by side with consumers to create a fairer, safer, and healthier world. CR does not endorse products or services, and does not accept advertising. Copyright © 2019, Consumer Reports, Inc.

Yahoo Finance
The FDIC change that leaves wealthy bank depositors with less protection
Affluent Americans may want to double-check how much of their bank deposits are protected by government-backed insurance. The rules governing trust accounts just changed.
Yahoo Sports
Juan Soto’s unapologetic intensity and showmanship are captivating the Bronx and rubbing off on teammates: ‘Literally every pitch is theater’
The 2024 Yankees have rediscovered their bravado and hold the second-best record in the AL, thanks in large part to the superstar outfielder.
Yahoo Sports
Timberwolves coach Chris Finch calls Jamal Murray's heat-pack toss on court 'inexcusable and dangerous'
Murray made a bad night on the court worse during a moment of frustration on the bench.
Yahoo Sports
Dolphins owner Stephen Ross reportedly declined $10 billion for team, stadium and F1 race
The value of the Dolphins and Formula One racing is enormous.
Yahoo Sports
Former NBA guard Darius Morris dies at 33
Former NBA guard Darius Morris has died at the age of 33. He played for five teams during his four NBA seasons. Morris played college basketball at Michigan.
Yahoo Sports
Report: Suns fire head coach Frank Vogel after 1st-round playoff sweep, eyeing Mike Budenholzer as replacement
Frank Vogel's out after one season in Phoenix failed to produce a playoff win.
Yahoo Sports
Six quarterback situations to worry about & three that are on the precipice | Zero Blitz
Jason Fitz, Charles Robinson and Frank Schwab talk about which quarterback rooms concern them and which they find interesting heading into the 2024 NFL season.
Yahoo Sports
2024 Fantasy Football Mock Draft, 1.0
The Yahoo Fantasy football crew got together for their very first mock draft of 2024. Andy Behrens recaps the results.
Yahoo Sports
Yahoo Fantasy staff's Mock Draft 1.0: Shocking picks are plentiful
Teams have made their big splashes in free agency and made their draft picks, it's time for you to do the same. It's fantasy football mock draft time. Some call this time of year best ball season, others know it's an opportunity to get a leg up on your competition for when you have to draft in August. The staff at Yahoo Fantasy did their first mock draft of the 2024 season to help you with the latter. Matt Harmon and Andy Behrens are here to break it all down by each round and crush some staff members in the process.
Yahoo Finance
Former House Speaker Paul Ryan says he’s not voting for Trump : 'Character is too important'
Ryan says he would be writing in a Republican candidate instead of voting for Donald Trump.
Yahoo Sports
Ranking the best situations for the rookie quarterbacks: Start with Michael Penix in Atlanta at No. 1
It’s key to note that we’re not saying the “best team” or “best roster.” Instead, we’re talking about the best confluence of factors that can outline a path for survival and then success.
Yahoo Sports
Post-draft NFL fantasy power rankings: Offenses we love, like and want to stay away from
With free agency and the draft behind us, what 32 teams look like today will likely be what they look like Week 1 and beyond for the 2024 season. Matt Harmon and Scott Pianowski reveal the post-draft fantasy power rankings. The duo break down the rankings in six tiers: Elite offensive ecosystems, teams on the cusp of being complete mixed bag ecosystems, offensive ecosystems with something to prove, offenses that could go either way, and offenses that are best to stay away from in fantasy.
Yahoo Sports
Cardinals lose C Willson Contreras after left arm fractured by J.D. Martinez's swing
The Cardinals' nightmare season continues.
Yahoo Sports
Blockbuster May trade by Padres, MVP Ohtani has arrived, Willie Mays’ 93rd birthday & weekend recap
Jake Mintz & Jordan Shusterman discuss the Padres-Marlins trade that sent Luis Arraez to San Diego, as well as recap all the action from this weekend in baseball and send birthday wishes to hall-of-famer Willie Mays.
Yahoo Sports
Fantasy Baseball Weekend Preview: Get ready for some offense
Fantasy baseball analyst Fred Zinkie offers up his blueprint for conquering the final days of Week 6.
Yahoo Sports
What's wrong with the Denver Nuggets? | Devine Intervention
Dan Devine and Adam Mares discuss the Denver Nuggets and Minnesota Timberwolves after Monday night’s game 2.
Yahoo Finance
Recession-proof stocks are leading the market's latest leg higher
The Utilities and Consumer Staples sectors have popped since mid-April as investors search for value.
TechCrunch
Nintendo finally confirms the Switch 2 is on the way
In the most anticlimactic way possible, Nintendo on Tuesday confirmed years of rumors: The Nintendo Switch 2 console is on the way. "We will make an announcement about the successor to Nintendo Switch within this fiscal year," wrote Shuntaro Furukawa, the president of Nintendo, on X. Rather, Furukawa wanted to warn users not to expect the actual announcement in next month's Nintendo Direct livestream.
Yahoo Sports
Fantasy Baseball Trade Analyzer: Buy into a pair of Astros sluggers
Fantasy baseball analyst Fred Zinkie offers up his top buy low/high and sell low-high candidates for Week 6.
Engadget
The best budgeting apps for 2024
Budgeting apps can help you keep track of your finances, stick to a spending plan and reach your money goals. These are the best budget-tracking apps available right now.

News

Life

Entertainment

Finance

Sports

New on Yahoo

Hackers Attack Asus Computers Using Routine Software Update

What You Can Do

Recommended Stories

The FDIC change that leaves wealthy bank depositors with less protection

Juan Soto’s unapologetic intensity and showmanship are captivating the Bronx and rubbing off on teammates: ‘Literally every pitch is theater’

Timberwolves coach Chris Finch calls Jamal Murray's heat-pack toss on court 'inexcusable and dangerous'

Dolphins owner Stephen Ross reportedly declined $10 billion for team, stadium and F1 race

Former NBA guard Darius Morris dies at 33

Report: Suns fire head coach Frank Vogel after 1st-round playoff sweep, eyeing Mike Budenholzer as replacement

Six quarterback situations to worry about & three that are on the precipice | Zero Blitz

2024 Fantasy Football Mock Draft, 1.0

Yahoo Fantasy staff's Mock Draft 1.0: Shocking picks are plentiful

Former House Speaker Paul Ryan says he’s not voting for Trump : 'Character is too important'

Ranking the best situations for the rookie quarterbacks: Start with Michael Penix in Atlanta at No. 1

Post-draft NFL fantasy power rankings: Offenses we love, like and want to stay away from

Cardinals lose C Willson Contreras after left arm fractured by J.D. Martinez's swing

Blockbuster May trade by Padres, MVP Ohtani has arrived, Willie Mays’ 93rd birthday & weekend recap

Fantasy Baseball Weekend Preview: Get ready for some offense

What's wrong with the Denver Nuggets? | Devine Intervention

Recession-proof stocks are leading the market's latest leg higher

Nintendo finally confirms the Switch 2 is on the way

Fantasy Baseball Trade Analyzer: Buy into a pair of Astros sluggers

The best budgeting apps for 2024