Major Security Breach: Over 9,000 Asus Routers Infected by Persistent Botnet Attack

In a troubling development for network security, more than 9,000 Asus routers have been compromised by a sophisticated botnet known as “AyySSHush.” This alarming breach was uncovered in March 2025 by the cybersecurity firm GreyNoise, highlighting significant vulnerabilities in authentication protocols within the affected devices.

The botnet takes advantage of legitimate features within the routers to create a persistent SSH backdoor, which is deeply embedded within the router’s non-volatile memory (NVRAM). This clever approach allows the malicious code to survive standard firmware updates and even routine device reboots, making conventional remediation strategies largely ineffective.

As the shadow of this security incident looms, it serves as a stark reminder of the necessity for vigilant cybersecurity measures and regular updates to combat evolving threats in our increasingly connected digital world. Router users are encouraged to remain proactive and informed about their devices’ security status to avoid potential exploitation.