ASUS denies Kaspersky Lab allegations that malware came from compromised server
By: Matthew Strong, Taiwan News, Staff Writer
TAIPEI (Taiwan News) – As many as half a million computers might have installed malware disguised as an update from electronics giant ASUS after the Taiwanese company’s server was hacked, according to cybersecurity firm Kaspersky Lab.
A report in Motherboard magazine quotes researchers at the Russian company saying that the practice lasted five months last year before it was discovered.
The attack, dubbed “ShadowHammer,” involved hacking a server at Asustek Computer Inc. to send malware disguised as software updates from the Taiwanese company. The files were even signed with ASUS “digital certificates” to make them look authentic, Motherboard reported.
The original malware then went on to install backdoors on up to 500,000 Windows computers which would allow the hackers to launch even more malware later on.