Title: Major Cybersecurity Breach: Over 9,000 ASUS Routers Compromised by Persistent Botnet Attack
In a troubling development within the cybersecurity landscape, more than 9,000 ASUS routers have been compromised by a sophisticated attack orchestrated by a botnet known as “AyySSHush.” This alarming incident was unveiled in March 2025 by cybersecurity experts at GreyNoise, who have been closely monitoring the situation.
The attack takes advantage of vulnerabilities in authentication processes and creatively leverages the routers’ own functionalities to create a long-lasting SSH backdoor. What sets this attack apart is that the backdoor is embedded in the router’s non-volatile memory (NVRAM). This strategic positioning allows the malicious access point to remain intact even amidst firmware updates and device reboots, effectively thwarting standard methods of remediation.
As cybersecurity threats continue to evolve, incidents like this highlight the critical importance of maintaining robust security measures and being vigilant against potential vulnerabilities in network devices. For ASUS users, this breach serves as a stark reminder to regularly monitor their devices and employ advanced protective strategies.
Share this content:
