Slashdot is powered by your submissions, so send in your scoop

 



Forgot your password?
typodupeerror
×
Privacy Security Hardware Technology

ASUS Releases Fix For ShadowHammer Malware Attack (engadget.com) 63

A reader shares a report from Engadget: ASUS may have inadvertently pushed malware to some of its computers through its update tool, but it at least it has a fix ready to go. The PC maker has released a new version of its Live Update software for laptops that addresses the ShadowHammer backdoor attack. It also promised "multiple security verification mechanisms" to reduce the chances of further attacks, and started using an "enhanced end-to-end encryption mechanism." There are upgrades to the behind-the-scenes server system to prevent future attacks, ASUS added.

The company simultaneously reiterated the narrow scope of ShadowHammer, noting that the malware targeted a "very small and specific user group." It's believed to be an Advanced Persistent Threat -- that is, a state-backed assault against organizations rather than everyday users. Other ASUS devices weren't affected, according to a notice. While the fix is reassuring, it also raises questions as to why the systems weren't locked down earlier. Update tools are prime targets for hackers precisely because they're both trusted and have deep access to the operating system -- tight security is necessary to prevent an intruder from hijacking the process.

This discussion has been archived. No new comments can be posted.

ASUS Releases Fix For ShadowHammer Malware Attack

Comments Filter:
  • They just now started using cryptographic security for their system software updater.

    And don't worry, the malware only "targeted" a small group of users. Never mind that malware ran with full admin privs on your computer undetected for months. You're totally safe because it didn't "target" you specifically.

    <facepalm>

  • Why didn't they fix this earlier, TFS asks?

    Isn't it obvious? They were not going to spend money to fix some theoretical problem, especially when there are no real consequences if it actually does get exploited. Release a patch, wait for the 24 hour news cycle to move on, day after that everyone has forgotten and most people never even heard that your software is insecure. Sales unaffected.

  • The company simultaneously reiterated the narrow scope of ShadowHammer, noting that the malware targeted a "very small and specific user group." It's believed to be an Advanced Persistent Threat -- that is, a state-backed assault against organizations rather than everyday users.

    Well are they going to notify the victims of the attack or just pretend the problem is solved?!

  • [ASUS notes] that the malware targeted a "very small and specific user group." It's believed to be an Advanced Persistent Threat

    What a good news for the infected users! Now their GPU and hard disk firmware are probably compromised as well, making sure that ASUS' update will not wipe attacker presence out of the machine.

"Someone's been mean to you! Tell me who it is, so I can punch him tastefully." -- Ralph Bakshi's Mighty Mouse

Working...