قالب وردپرس درنا توس
Home https://server7.kproxy.com/servlet/redirect.srv/sruj/smyrwpoii/p2/ Technology https://server7.kproxy.com/servlet/redirect.srv/sruj/smyrwpoii/p2/ Hackers hijacked update server to install backdoors on ASUS machines

Hackers hijacked update server to install backdoors on ASUS machines



Accessing the update server allowed the attackers to distribute malicious files that seemed legitimate because they got an ASUS digital certificate to make them authentic. Instead, the fake software updates gave the attackers a back door to access infected devices. Kaspersky estimates that about half a million Windows machines received the back door from the ASUS & # 39; update server. However, the attackers only seem to have targeted about 600 systems. Malware was designed to search for machines by their MAC address. It is not clear why the attackers focused on the small subset of machines.

Attacks in the supply chain, which specifically update servers, are becoming more and more common. Microsoft made a similar attack in 201

2 as hackers distributed a spyware called Flame through the Windows Update Tool. Popular apps such as CCleaner and Transmission were at one time compromised and unconsciously distributing malware to users. Perhaps, in particular, the non-Petya cyber attack, which hit thousands of machines across Europe, Asia, Australia and the United States, was accomplished through a malicious update to an accounting software tool.


Source link