Security issues with the ASUS Live Update utility, which is claimed to have been used in a supply chain attack by a nation-state, were highlighted as far back as 2016, with a security analysis of OEM updaters by three researchers from the firm Duo Security slamming the Taiwan-based firm over its lax approach to updating.
Russian security firm Kaspersky Lab claims to have uncovered a sophisticated supply chain attack which used the live update utility that comes on hardware made by ASUS, the fifth largest PC supplier which is based in Taiwan, with the attack having taken place between June and November 2018.
The investigation into the attack on the networks of the Australian Parliament and the three main political parties — Liberal, Labor and National — is ongoing and the Australian Signals Directorate says it can offer no comment on it now.
The "Bully Boys" are still hard at it I see.
I find it incredible. VOIP is expected as an extra charge on top after cutting phone service. It should be[…]
TelSoc passed this resolution yesterday BTW…Telsoc calls upon the National COVID-19 Coordination Commission (NCCC):To include in its considerations the inequity[…]
Another hard hitting piece from Sam with which I entirely agree. The fundamental problem is that if we all jib[…]
I think that's a bit harsh, Sam. Windows is ubiquitous which makes Windows machines attractive targets. These days there isn't[…]