Hosted on MSN

A poisoned Asus utility tool was found online

CISA added a critical Asus Live Update supply‑chain compromise (CVE‑2025‑59374) to KEV, tied to tampered installers distributed before 2021 The flaw stems from the 2018–2019 incident, where attackers ...
ZDNet

Hijacked ASUS Live Update software installs backdoors on countless PCs worldwide

A cybercriminal campaign focused on targeting the supply chain through the exploitation of ASUS Live Update software may have involved the installation of backdoors on over one million PCs. On Monday, ...
Gizmodo

Hackers Snuck Backdoors Into ASUS Software Updates, Infecting Thousands

On Monday, we saw once again how criminals can exploit trust and use it as a weakness. Cybersecurity reporter Kim Zetter revealed that one of the world’s largest computer manufacturers, Taiwan-based ...
Wired

How to Check Your Computer for Hacked Asus Software Update

Today's news that hackers put backdoors into thousands of Asus computers using the company's own software update platform is a reminder of why supply-chain compromises are one of the scariest digital ...
Threat Post

Some ASUS Updates Drop Backdoors on PCs in ‘Operation ShadowHammer’

The attack appears to be associated with a China-backed APT actor. A supply-chain attack dubbed “Operation ShadowHammer” has been uncovered, targeting users of the ASUS Live Update Utility with a ...
Computerworld

ASUS Live Update Utility cracked, installs ShadowHammer backdoor on 1M PCs, but only 600 targeted

In yet another Rock Star malware announcement, Kaspersky unveils spectacular details of craftily subverted ASUS automatic update servers. Kaspersky estimates 1 million infections, but only 600 ...