Global Botnets Exploit Router Vulnerabilities to Maintain Persistent Backdoors

May 28, 2025 at 04:44 PM

•

1 min read

Global Botnets Exploit Router Vulnerabilities to Maintain Persistent Backdoors — Photo: BleepingComputer

TL;DR Summary

A new botnet named 'AyySSHush' has compromised over 9,000 ASUS routers by exploiting an old vulnerability to install a persistent SSH backdoor, allowing attackers to maintain access even after reboots or firmware updates. The campaign, possibly linked to a nation-state actor, also targeted other SOHO routers from Cisco, D-Link, and Linksys, and involves stealthy techniques to evade detection. ASUS has released security patches, and users are advised to update firmware, check for suspicious files, and reset their devices if compromised.

Topics:top-news #asus-routers #botnet #cybersecurity #ssh-backdoor #technology #vulnerabilities

Share this article

Botnet hacks 9,000+ ASUS routers to add persistent SSH backdoor BleepingComputer
Cisco security flaw exploited to build botnet of thousands of devices Yahoo
ViciousTrap Uses Cisco Flaw to Build Global Honeypot from 5,300 Compromised Devices The Hacker News
Thousands of Asus routers are being hit with stealthy, persistent backdoors Ars Technica
ASUS router backdoors affect 9K devices, persist after firmware updates SC Media

Reading Insights

Total Reads

Unique Readers

Time Saved

2 min

vs 3 min read

Condensed

83%

483 → 80 words

Want the full story? Read the original article

Read on BleepingComputer

JavaScript Required

tl;dr daily news requires JavaScript to be enabled. Please enable JavaScript in your browser settings.

Related Sources

Reading Insights