Kaspersky Lab has described the ASUS hack as a one of the biggest supply-chain attacks ever.
Asus Live Updater was used in a big supply chain attack we dubbed Operation#ShadowHammer.
Once running on a victims equipment, the backdoor verified its MAC address against this table.
If the MAC address matched one of the entries, the malware downloaded the next stage of malicious code.
In total, security experts were able to identify more than 600 MAC addresses.
These were targeted by over 230 unique backdoored samples with different shellcodes.
Otherwise, the infiltrated updater did not show any web link activity.
They also informed the other three unnamed vendors about the attacks.
Source:Kaspersky
Read More
source: www.techworm.net
