Over 9,000 ASUS Routers Compromised by Sophisticated Botnet Attack
In a troubling turn of events for users of ASUS networking devices, a cybersecurity breach has compromised more than 9,000 routers. Named “AyySSHush,” this sophisticated botnet was uncovered by GreyNoise, a leading cybersecurity firm, in March 2025.
The attack capitalizes on vulnerabilities in the authentication systems of these devices, using inherent router features to create a persistent SSH backdoor. What sets this breach apart is that the SSH backdoor is embedded in the router’s non-volatile memory (NVRAM). This clever tactic allows the malicious software to survive even after firmware updates or device reboots, making conventional repair methods ineffective.
For the thousands of users affected, the implications are significant. The persistent nature of this SSH backdoor means that standard security measures may no longer be sufficient to protect against unauthorized access. Users are urged to take immediate action to safeguard their networks and minimize the risk of further exploitation.
As cyber threats continue to evolve, this incident serves as a crucial reminder of the importance of securing home and business networks against potential vulnerabilities. Stay vigilant, keep your devices updated, and consider leveraging enhanced security measures to protect against similar attacks in the future.
Share this content:
