Security Alert: Over 9,000 ASUS Routers Compromised by Persistent Botnet
In a concerning development for network security, a major attack has compromised more than 9,000 ASUS routers, as revealed by cybersecurity experts at GreyNoise. This incident, which came to light in March 2025, involves a sophisticated botnet known as “AyySSHush.”
The crux of the issue lies in the exploitation of authentication vulnerabilities that allow the attackers to take advantage of existing router functionalities. This enables them to create a persistent SSH backdoor within the device. What makes this breach particularly alarming is that the backdoor is integrated directly into the router’s non-volatile memory (NVRAM). As a result, even standard remedies such as firmware updates and device reboots fail to eradicate the threat, leaving vulnerable users at risk.
This recent attack underscores the importance of robust cybersecurity measures and vigilance for all router users. It is crucial for individuals and organizations to frequently assess their devices and stay informed about potential vulnerabilities to safeguard their networks against such persistent threats.
Share this content:
