Technology

Massive ASUS Router Hack: How Your Device Could Be Under Attack

2025-05-29

Author: Wai

A Widespread Security Breach

In a shocking revelation, thousands of ASUS wireless routers have fallen prey to a sophisticated botnet attack, with hackers also zeroing in on devices from Cisco, D-Link, and Linksys. The method of infection is so insidious that routers remain at the mercy of attackers even after firmware updates.

The Exploit Uncovered

Security specialists at Greynoise initially discovered this alarming exploit back in March but decided to keep it under wraps to allow the tech industry to formulate a response. Unfortunately, the ongoing exploitation campaign means that unauthorized, persistent access has been gained to a multitude of ASUS routers connected to the internet.

Stealthy Operations

This breach appears to be a covert operation orchestrated by alleged state-sponsored attackers, aiming to create a vast network of compromised devices for future exploits. Once a router is ensnared, the malware remains hidden, evading detection even through reboots and firmware updates.

Devices in Danger

Models including the RT-AC3100, RT-AC3200, and RT-AX55 are currently vulnerable. Bleeping Computer warns that by the time users become aware their router has been compromised, it may already be too late to effectively update the firmware.

What You Can Do

For those with affected ASUS models, the only foolproof way to secure your device is to perform a factory reset, followed by a firmware update. While an update alone won't eradicate the infection, doing so after a reset can prevent future breaches. As of now, there have been no confirmed infections regarding other brands such as Cisco or D-Link, so no immediate action is necessary for those devices.

Stay Vigilant

Ensure your Wi-Fi security is a priority: regularly check for updates and monitor your device’s configuration. With cyber threats evolving, vigilance is key to keeping your home network safe.