Urgent Security Alert: Over 9,000 ASUS Routers Compromised by Advanced Botnet Attack

In a troubling revelation for cybersecurity, more than 9,000 ASUS routers have fallen victim to an advanced botnet attack, known as “AyySSHush.” This significant breach was uncovered by cybersecurity experts at GreyNoise in March 2025, highlighting the dangers posed by authentication vulnerabilities inherent in many networking devices.

The AyySSHush botnet takes advantage of legitimate features within the routers to create a persistent SSH backdoor. One alarming aspect of this security breach is that the backdoor is lodged in the router’s non-volatile memory (NVRAM). As a result, it remains intact even through firmware updates and device restarts, thwarting conventional methods of remediation.

As various stakeholders from individual users to businesses increasingly rely on such devices, this incident underscores the pressing need for enhanced vigilance and robust security measures. Router owners are strongly advised to evaluate their security protocols and stay informed about emerging threats in the ever-evolving landscape of cybersecurity.

Stay tuned to our blog for continued updates on this situation and more essential tips on how to safeguard your devices from similar attacks.