Title: Major Security Breach: Over 9,000 ASUS Routers Infiltrated by Botnet Attack
In a troubling cybersecurity development, more than 9,000 ASUS routers have fallen victim to a sophisticated attack identified as “AyySSHush.” The breach, uncovered in March 2025 by the cybersecurity firm GreyNoise, highlights serious vulnerabilities in router authentication processes.
The attack takes advantage of legitimate features within the routers to establish a persistent SSH backdoor. This malicious implant is stored in the router’s non-volatile memory (NVRAM), providing resilience against typical remediation efforts, such as firmware updates and device reboots. As a result, conventional security measures appear ineffective in eradicating the threat.
This incident underscores the need for heightened awareness regarding cybersecurity practices and the importance of keeping router firmware up to date. However, this specific case demonstrates that even diligent updates may not safeguard against advanced persistent threats.
The “AyySSHush” botnet, with its capability to remain stealthy and embedded, raises questions about the long-term security of networked devices and the necessity for robust protocols to protect against such sophisticated intrusions. Users of ASUS routers are urged to assess their network security and consider taking immediate action to mitigate potential risks.
Share this content:
