Hey all,
I'm sure everyone's seen the news re: the ASUS supply chain attack (original story available on Motherboard here). But I wanted to share some high-level facts you can use to get up to speed or to talk about the attack with management/users/clients. I've also pulled together a list of things you can do to determine whether or not you're affected.
I'm ripping these from a post I wrote on the NinjaRMM blog. It has a bunch of additional details if you're interested:https://www.ninjarmm.com/blog/asus-supply-chain-attack-am-i-affected/
Hopefully this is helpful!
What happened? Quick facts:
- Attackers compromised the ASUS Live Update Utility, which comes pre-installed on ASUS notebooks and automatically installs firmware and software updates.
- They used the tool to deliver malware to ASUS machines from June 2018 to November 2018. Updates...