Major cybersecurity breach: 9,000 ASUS Routers Compromised by Botnet Attack
In a troubling turn of events, more than 9,000 ASUS routers have fallen victim to a sophisticated cybersecurity breach linked to a botnet known as “AyySSHush.” This alarming discovery, made in March 2025 by the cybersecurity experts at GreyNoise, highlights serious vulnerabilities within router authentication protocols.
The attack leverages legitimate functionalities of the routers, enabling it to create a persistent SSH backdoor that is alarmingly resilient. What makes this breach particularly concerning is its insertion into the router’s non-volatile memory (NVRAM). This design choice allows the malicious backdoor to survive firmware updates and device reboots, effectively thwarting typical remediation strategies that users and administrators rely on for maintaining device security.
As cybersecurity threats continue to evolve, this incident serves as a stark reminder of the importance of keeping devices secure and up-to-date. Users of ASUS routers are urged to take immediate action by reviewing security measures and considering potential solutions to mitigate risks associated with compromised systems.
Share this content:
