Major Cybersecurity Breach: Over 9,000 Asus Routers Compromised by Botnet
In a concerning development for internet security, more than 9,000 Asus routers have fallen victim to a critical botnet attack known as “AyySSHush.” This sophisticated cyber threat was uncovered in March 2025 by the cybersecurity experts at GreyNoise.
The attack exploits inherent vulnerabilities within the router’s authentication process and cleverly utilizes the device’s legitimate features to create a long-lasting SSH backdoor. What sets this incident apart is the location of the backdoor—a special area called non-volatile memory (NVRAM). This design ensures that even if users perform firmware updates or reboot their devices, the backdoor remains intact and operational.
Unfortunately, this advancement in attack methodology renders conventional remediation strategies ineffective, raising alarms in the cybersecurity community. Users of affected Asus router models should take immediate precautions to secure their networks and stay informed about further developments. This incident underscores the critical importance of regular security assessments and the need for manufacturers to bolster their defenses against such invasive threats.
As the situation unfolds, we encourage all internet users to remain vigilant and proactive in protecting their home networks against potential intrusions.
Share this content:
