• Welcome to TechPowerUp Forums, Guest! Please check out our forum guidelines for info related to our community.

ASUS Responds to Reports of ASUS Live Update System Being Compromised by Hackers

btarunr

Editor & Senior Moderator
Staff member
Joined
Oct 9, 2007
Messages
47,233 (7.55/day)
Location
Hyderabad, India
System Name RBMK-1000
Processor AMD Ryzen 7 5700G
Motherboard ASUS ROG Strix B450-E Gaming
Cooling DeepCool Gammax L240 V2
Memory 2x 8GB G.Skill Sniper X
Video Card(s) Palit GeForce RTX 2080 SUPER GameRock
Storage Western Digital Black NVMe 512GB
Display(s) BenQ 1440p 60 Hz 27-inch
Case Corsair Carbide 100R
Audio Device(s) ASUS SupremeFX S1220A
Power Supply Cooler Master MWE Gold 650W
Mouse ASUS ROG Strix Impact
Keyboard Gamdias Hermes E2
Software Windows 11 Pro
Advanced Persistent Threat (APT) attacks are national-level attacks usually initiated by a couple of specific countries, targeting certain international organizations or entities instead of consumers. ASUS Live Update is a proprietary tool supplied with ASUS notebook computers to ensure that the system always benefits from the latest drivers and firmware from ASUS. A small number of devices have been implanted with malicious code through a sophisticated attack on our Live Update servers in an attempt to target a very small and specific user group. ASUS customer service has been reaching out to affected users and providing assistance to ensure that the security risks are removed.

ASUS has also implemented a fix in the latest version (ver. 3.6.8) of the Live Update software, introduced multiple security verification mechanisms to prevent any malicious manipulation in the form of software updates or other means, and implemented an enhanced end-to-end encryption mechanism. At the same time, we have also updated and strengthened our server-to-end-user software architecture to prevent similar attacks from happening in the future.



Additionally, we have created an online security diagnostic tool to check for affected systems, and we encourage users who are still concerned to run it as a precaution. The tool can be found here.

Users who have any additional concerns are welcome to contact ASUS Customer Service. More information about APT groups can be accessed here.

FAQs
  • How do I know whether or not my device has been targeted by the malware attack?
    Only a very small number of specific user group were found to have been targeted by this attack and as such it is extremely unlikely that your device has been targeted. However, if you are still concerned about this matter, feel free to use ASUS' security diagnostic tool or contact ASUS Customer Service for assistance.
  • What should I do if my device is affected?
    Immediately run a backup of your files and restore your operating system to factory settings. This will completely remove the malware from your computer. In order to ensure the security of your information, ASUS recommends that you regularly update your passwords.
  • How do I make sure that I have the latest version of ASUS Live Update?
    You can find out whether or not you have the latest version of ASUS Live Update by following the instructions shown here.
  • Have other ASUS devices been affected by the malware attack?
    No, only the version of Live Update used for notebooks has been affected. All other devices remain unaffected.

View at TechPowerUp Main Site
 
Joined
Jul 16, 2014
Messages
8,198 (2.17/day)
Location
SE Michigan
System Name Dumbass
Processor AMD Ryzen 7800X3D
Motherboard ASUS TUF gaming B650
Cooling Artic Liquid Freezer 2 - 420mm
Memory G.Skill Sniper 32gb DDR5 6000
Video Card(s) GreenTeam 4070 ti super 16gb
Storage Samsung EVO 500gb & 1Tb, 2tb HDD, 500gb WD Black
Display(s) 1x Nixeus NX_EDG27, 2x Dell S2440L (16:9)
Case Phanteks Enthoo Primo w/8 140mm SP Fans
Audio Device(s) onboard (realtek?) - SPKRS:Logitech Z623 200w 2.1
Power Supply Corsair HX1000i
Mouse Steeseries Esports Wireless
Keyboard Corsair K100
Software windows 10 H
Benchmark Scores https://i.imgur.com/aoz3vWY.jpg?2
Not surprised here, ASUS software, all of it, was pure shit when I used it, years ago, seems it still is.
 
Joined
Oct 2, 2005
Messages
3,059 (0.44/day)
Location
Baltimore MD
Processor Ryzen 5900X
Motherboard ASUS Prime X470 Pro
Cooling Arctic liquid freezer II 240
Memory 2 x 16 Gb Gskill Trident Z 3600 Mhz
Video Card(s) MSI Ventus 3060 Ti OC
Storage Samsung 960 EVO 500 Gb / 860 EVO 1 Tb
Display(s) Dell S2719DGF
Case Lian Li Lancool II Mesh
Audio Device(s) Soundblaster Z
Power Supply Corsair RM850x
Mouse Logitech G703
Keyboard Logitech G513
Software Win 11
Joined
Dec 6, 2018
Messages
342 (0.16/day)
Location
Hungary
Processor i5-9600K
Motherboard ASUS Prime Z390-A
Cooling Cooler Master Hyper 212 Black Edition PWM
Memory G.Skill DDR4 RipjawsV 3200MHz 16GB kit
Video Card(s) Asus RTX2060 ROG STRIX GAMING
Display(s) Samsung Odyssey G7 27"
Case Cooler Master MasterCase H500
Power Supply SUPER FLOWER Leadex Gold 650W
Mouse BenQ Zowie FK1+-B
Keyboard Cherry KC 1000
Software Win 10
Not surprised here, ASUS software, all of it, was pure shit when I used it, years ago, seems it still is.
well, maybe you have a messy system and it didn't like the place:). I've been running ASUS software for 6+ years and never had any problems. AI Suite3 is excellent, really nice monitoring and fan control going on. Haven't noticed fishy disk or network usage, it's just stable and reliable.

I remember someone pointing out a whole bunch of vulnerabilities in AI suite and the RGB software a while ago so i removed everything asus from my system
https://www.secureauth.com/labs/advisories/asus-drivers-elevation-privilege-vulnerabilities

your link only mentions RGB software.
 

Fx

Joined
Oct 31, 2008
Messages
1,332 (0.23/day)
Location
Portland, OR
Processor Ryzen 2600x
Motherboard ASUS ROG Strix X470-F Gaming
Cooling Noctua
Memory G.SKILL Flare X Series 16GB DDR4 3466
Video Card(s) EVGA 980ti FTW
Storage (OS)Samsung 950 Pro (512GB), (Data) WD Reds
Display(s) 24" Dell UltraSharp U2412M
Case Fractal Design Define R5
Audio Device(s) Sennheiser GAME ONE
Power Supply EVGA SuperNOVA 650 P2
Mouse Mionix Castor
Keyboard Deck Hassium Pro
Software Windows 10 Pro x64
I don't trust anyone for automatically patching anything that I own at home or at work.

Concerning ASUS Suite, I only use the bare essential software of it and leave the rest uninstalled. I am not at home and can't remember off the top of my head of what that is.
 
Last edited:
Joined
Jul 29, 2014
Messages
484 (0.13/day)
Location
Fort Sill, OK
Processor Intel 7700K 5.1Ghz (Intel advised me not to OC this CPU)
Motherboard Asus Maximus IX Code
Cooling Corsair Hydro H115i Platinum
Memory 48GB G.Skill TridentZ DDR4 3200 Dual Channel (2x16 & 2x8)
Video Card(s) nVIDIA Titan XP (Overclocks like a champ but stock performance is enough)
Storage Intel 760p 2280 2TB
Display(s) MSI Optix MPG27CQ Black 27" 1ms 144hz
Case Thermaltake View 71
Power Supply EVGA SuperNova 1000 Platinum2
Mouse Corsair M65 Pro (not recommded, I am on my second mouse with same defect)
Software Windows 10 Enterprise 1803
Benchmark Scores Yes I am Intel fanboy that is my benchmark score.
Not surprised here, ASUS software, all of it, was pure shit when I used it, years ago, seems it still is.

Not much has changed in past few years with Asus bundle software. I have x5 Asus boards ranging from X99 Deluxe II, maximux IX code, X hero, XI hero and non of the app in so called Value Added software bundle is of any use to me especially their Dual Intelligent processor is mediocre at best. I tend to use their GameFirst application but it does not make a whole lot of difference when I do OOKLA's speedtest when gaming while running bandwidth intensive applications in the background. Perhaps Mem Tweak is something that is worth while in the entire bundle while rest is pure junk for some.

Getting back to topic, imagine same thing were to happen with Microsoft. :twitch:
 
Joined
Oct 22, 2014
Messages
14,091 (3.82/day)
Location
Sunshine Coast
System Name H7 Flow 2024
Processor AMD 5800X3D
Motherboard Asus X570 Tough Gaming
Cooling Custom liquid
Memory 32 GB DDR4
Video Card(s) Intel ARC A750
Storage Crucial P5 Plus 2TB.
Display(s) AOC 24" Freesync 1m.s. 75Hz
Mouse Lenovo
Keyboard Eweadn Mechanical
Software W11 Pro 64 bit
…..
Getting back to topic, imagine same thing were to happen with Microsoft. :twitch:
The NSA has to tight a hold on those backdoors ;)
 
Joined
Apr 10, 2013
Messages
302 (0.07/day)
Location
Michigan, USA
Processor AMD 1700X
Motherboard Crosshair VI Hero
Memory F4-3200C14D-16GFX
Video Card(s) GTX 1070
Storage 960 Pro
Display(s) PG279Q
Case HAF X
Power Supply Silencer MK III 850
Mouse Logitech G700s
Keyboard Logitech G105
Software Windows 10
What the heck is ASUS Live Update? That bloatware is for the kids that can't do anything for themselves. Grow up and update via USB direct to the UEFI.
 
Joined
Mar 28, 2019
Messages
83 (0.04/day)
it updates all the drivers, not just the BIOS. It's pretty convenient - at least the similar software I have on my Lenovo.
 
Joined
Jul 16, 2014
Messages
8,198 (2.17/day)
Location
SE Michigan
System Name Dumbass
Processor AMD Ryzen 7800X3D
Motherboard ASUS TUF gaming B650
Cooling Artic Liquid Freezer 2 - 420mm
Memory G.Skill Sniper 32gb DDR5 6000
Video Card(s) GreenTeam 4070 ti super 16gb
Storage Samsung EVO 500gb & 1Tb, 2tb HDD, 500gb WD Black
Display(s) 1x Nixeus NX_EDG27, 2x Dell S2440L (16:9)
Case Phanteks Enthoo Primo w/8 140mm SP Fans
Audio Device(s) onboard (realtek?) - SPKRS:Logitech Z623 200w 2.1
Power Supply Corsair HX1000i
Mouse Steeseries Esports Wireless
Keyboard Corsair K100
Software windows 10 H
Benchmark Scores https://i.imgur.com/aoz3vWY.jpg?2
well, maybe you have a messy system and it didn't like the place:). I've been running ASUS software for 6+ years and never had any problems. AI Suite3 is excellent, really nice monitoring and fan control going on. Haven't noticed fishy disk or network usage, it's just stable and reliable.

obviously you dont read the asus forums much. Even ASUS sorta admitted it in a round about way. There was at one point at least 50 different uninstall executables, that was 4 years ago, one for every motherboard and system build. I know their forums changed since and a lot of the "negative posts" were culled.
 
Top