Asus responds to concerns over 9,000+ routers compromised by botnet As reported by Tomshardware.com – In an official statement regarding the insecurity, Asus told Tom’s Hardware that the vulnerabilities can be avoided for those yet uninfected, and fixed for those routers...

[UK Sentinel]

As reported by Tomshardware.com – In an official statement regarding the insecurity, Asus told Tom’s Hardware that the vulnerabilities can be avoided for those yet uninfected, and fixed for those routers that have been compromised. The hostile agents utilise a known command injection flaw, CVE-2023-39780, to enable SSH access on a custom port (TCP/53282) and insert an attacker-controlled public key for remote access.

https://www.tomshardware.com/tech-industry/cyber-security/asus-responds-to-concerns-over-9-000-routers-compromised-by-botnet-firmware-updates-and-factory-reset-can-purge-routers-of-persistent-backdoor

Share the knowledge

In a completely sane world, madness is the only freedom (J.G.Ballard).

You need to login in order to vote

[Author]

Posts