A couple of days back we reported that Asus has been hit with a critical bug that impacts millions of Asus devices. While Asus has already released a fix for the bug, it’s a good idea to check if you were one of the unlucky million users who were hit by this bug.
For those who are unaware, hackers have targeted over a million ASUS devices by compromising system updates to install a malicious backdoor on ASUS laptops and desktops, according to a blog post from Kaspersky. The hackers apparently modified the ASUS Live Update Utility, which delivers BIOS, UEFI, and software updates to ASUS laptops and desktops. This wasn’t just your average hack. The utility was signed with a legitimate certificate and the hackers even ensured that the hacked file size matched the original one. The compromised update was even hosted on the official ASUS server. If you’re using Asus device then you can download Kaspersky’s utility from their SecureList article (via LifeHacker). The utility is mentioned at the end of the article and will be downloaded as a zip file. You can then unzip the utility and run the shadowhammer.exe file. The program should run the test and will notify you if you were affected by the hack.
Asus has already taken appropriate steps to patch the issue and we recommend everyone to update the Asus Live Update app (V3.6.8 or higher). Even if you weren’t affected by the hack, it will be a good idea to run a full system scan to ensure you don’t have any malwares.