A new advanced persistent threat (APT) campaign was detected by Kaspersky Lab in January 2019 and estimated to have run between June and November 2018 has allegedly impacted over one million users who have downloaded the ASUS Live Update Utility on their computers. The malicious campaign was dubbed Operation ShadowHammer and led to the backdoored version of the utility being downloaded and installed by more than 57,000 users. The utility is used to automatically update certain components such as BIOS, UEFI, drivers and applications.
Source: https://www.bleepingcomputer.com/news/security/asus-live-update-infected-with-backdoor-in-supply-chain-attack/