Cybersecurity provider Kaspersky says hackers have delivered malware updates to more than 1 million+ Asus computer owners last year by hijacking the company’s software update system.wq.
Kaspersky Lab says the attack took place between June and November last year. The malware was used to deliver a software update with a “backdoor” that would give access to hackers.
“We are not able to calculate the total count of affected users based only on our data; however, we estimate that the real scale of the problem is much bigger and is possibly affecting over a million users worldwide,” Kaspersky said in a blog post.
Researchers from Cybersecurity provider Symantec were also able to identify the attack against Asus users, a Symantec spokesperson said.
The attack, which was first reported by technology news website Motherboard, shows how hackers can leverage the size of technology companies and their suppliers to reach large numbers of victims.
Kaspersky reported that more than 57,000 of its users had downloaded and installed the software update. The hackers evidently intended to target many people. It also said it informed Asus about the attack in January and was assisting the company with its investigation.