ASUS Live Update compromised by attackers
If you have an ASUS computer, this is for you.
ASUS Live Update was compromised by attackers and loaded with a malicious update – a backdoor Trojan known as Operation ShadowHammer. As of right now, it’s estimated that around a half-million Windows (ASUS) computers have had the malicious backdoor installed on their computers via compromised ASUS updates. This fake ASUS update server was operated by attackers. ASUS denied that its server was compromised, however, the malware samples trail leads right back to the Asus server, according to vice.com.
Apparently, ASUS is no longer denying the attack as they are distributing a small program to help ASUS users check to see if their computers have been compromised.
If you have an ASUS computer running any version of Windows, you can download a small program from ASUS to check your computer to see if it has been compromised. You can download the tool from here. Once you download it, unzip it and double-click on the exe file to run it.
Since this backdoor was sent to ASUS computer users via a trusted channel (ASUS Live Update), it may have been able to bypass most security software.