That "critical" software update for your Asus computer may have actually been malware, planted by hackers in a targeted attack now known as "ShadowHammer," which we learned yesterday. Now, Asus says it has a solution in the form of a real security update – one you can download using its Live Update software tool.
In addition, the company says it has a second "security diagnostic" tool that you can use to scan to see if your computer has been affected. "[W] we encourage users who are still concerned to execute it as a precautionary measure," reads part of the company's press release, which includes a link to the software.
The company's press release notably no includes an apology, and downplays piracy, stating that "It was found that only a very small number of specific users were attacked." Cybersecurity firm Kaspersky Lab estimated that the malware could have been distributed to a million people. Computers, and installed in hundreds of thousands of those machines. Both Kaspersky and Symantec say they identified the malware in at least tens of thousands of cases.
However, Asus says that steps were taken to ensure that it does not happen again, including "multiple security verification mechanisms to prevent any type of malware". "manipulation" and "an improved end-to-end encryption mechanism."
"At the same time, we have also updated and strengthened our server-to-end user software architecture to prevent similar attacks in the future," Asus says. 19659006]