Jump to content

Asus with another malware attack

LukeSavenije

Souce: Hardware.info (Dutch)

 

ASUS WebStorage has been used by attackers to infect systems with malware, as discovered by researchers at antivirus company ESET. WebStorage is, as the name suggests, a cloud storage service.

 

Quote

The aforementioned leak may be based on various scenarios, including a "supply chain" attack for which ASUS update servers have been used. It was already announced last March that ASUS Live Update was used by attackers to spread malware.

In the case of a Plead backdoor however, the scenario of a supply chain attack is unlikely, all the more so as there are no indications that the WebStorage servers have ever spread malware. In addition, separate malware files were used instead of adding malicious functionality to legitimate software.

The researchers suspect the use of a man-in-the-middle attack. The WebStorage update process takes place via unencrypted link. In addition, the software appears not to verify the authenticity of updates offered. An attacker sitting between the user and the internet can offer a malicious update that is then installed automatically.

In addition to the aforementioned, ESET has found that there have been attacks in which the attackers intercepted and modified the update request of the WebStorage software. Subsequently, malware was downloaded from an affected Taiwanese government domain. The virus fighter adds that software developers must take measures to protect their update mechanism against man-in-the-middle attacks.

 

If you currently use this server, be quick to delete it and run a couple scans!

Edited by LukeSavenije
Link to comment
Share on other sites

Link to post
Share on other sites

Just now, captain_to_fire said:

So...ShadowHammer 2.0? 

yeah... kinda

Link to comment
Share on other sites

Link to post
Share on other sites

Asus right now 

1sneezyboi.gif

|King Of The Lost|
Project Dark: i7 7820x 5.1GHz | X299 Dark | Trident Z 32GB 3200MHz | GTX 1080Ti Hybrid | Corsair 760t | 1TB Samsung 860 Pro | EVGA Supernova G2 850w | H110i GTX
Lava: i9 12900k 5.1GHz (Undervolted to 1.26v)| MSI z690 Pro DDR4| Dominator Platnium 32GB 3800MHz| Power Color Red Devil RX 6950 XT| Seasonic Focus Platnium 850w| NZXT Kraken Z53
Unholy Rampage: i7 5930k 4.7GHz 4.4 Ring| X99 
Rampage|Ripjaws IV 16GB 2800 CL13| GTX 1080 Strix(Custom XOC Signed BIOS) | Seasonic Focus Platinum 850w |H100i v2 
Revenge of 775: Pentium 641 | Biostar TPower i45| Crucial Tracer 1066 DDR2 | GTX 580 Classified Ultra | EVGA 650 BQ | Noctua NH D14

Link to comment
Share on other sites

Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now

×