Major Cybersecurity Breach: Over 9,000 ASUS Routers Compromised by ‘AyySSHush’ Botnet

In a troubling development for cybersecurity, a massive breach has impacted more than 9,000 ASUS routers, linked to a sophisticated botnet known as “AyySSHush.” This alarming situation was first identified in March 2025 by the cybersecurity firm GreyNoise, shedding light on a series of vulnerabilities that threaten the security of countless devices.

The attack exploits authentication weaknesses, taking advantage of legitimate functionalities within the routers to create a persistent SSH backdoor. What sets this incident apart is the backdoor’s placement in the router’s non-volatile memory (NVRAM). This design allows the malicious code to withstand firmware updates and even device reboots, complicating traditional approaches to remediation.

As cybersecurity professionals continue to investigate the extent of this attack, it raises significant concerns about the ongoing security risks associated with home networking devices. Users of ASUS routers are urged to take immediate precautions and stay informed about potential vulnerabilities to safeguard their networks against unauthorized access.

This incident serves as a recurring reminder of the importance of implementing robust security measures and staying vigilant in the face of evolving cyber threats. Always ensure your devices have the latest firmware updates and consider changing default passwords to enhance your cybersecurity posture.