Title: Over 9,000 ASUS Routers Fall Victim to Persistent Botnet Attack
In a troubling development within the realm of cybersecurity, a widespread attack has compromised more than 9,000 ASUS routers. This incident involves a complex botnet known as “AyySSHush,” which was identified in March 2025 by the cybersecurity company GreyNoise.
The attack takes advantage of specific authentication vulnerabilities, cleverly using legitimate router functionalities to install a persistent SSH backdoor. This backdoor has been integrated into the router’s non-volatile memory (NVRAM), which means it can survive even after firmware updates and device reboots. As a result, standard remediation strategies typically employed in such situations have proven ineffective.
The implications of this breach are considerable, not only putting the affected devices at risk but also exposing connected networks to potential threats. Therefore, it is crucial for ASUS router users to remain vigilant, prioritize updates, and consider additional protective measures to safeguard their networks against this ongoing vulnerability.
Stay informed and take proactive steps to protect your devices in light of this alarming issue.
Share this content:
