ASUS router backdoors affect 9K devices, persist after firmware updates

[LostCorpse]

more for peoples interest, copy paste:

ASUS router backdoors affect 9K devices, persist after firmware updates

Authentication bypass and command injection flaws facilitate the malicious activity.

www.scworld.com

 

[ChrisD.]

Bit of discussion about it here:

Asus Routers

they have a very comprehensive array of features, and they are the same from one router to the next so you know what you are getting You basically just described OpenWRT. but honestly didn't understand the language and found the configuration really hard going. And my supplier, Zen, will not...

forums.overclockers.co.uk

Wonder how long it will take ASUS to actually do something about it this time, or if they'll wait until the FCC forces their hand as well. Firmware upgrade is not enough to fix this.

 

[Rroff]

Seems to be a lot of this going on lately - probably state sponsored and aimed at specific targets rather than general malware. Not just routers but various network attached devices which have operating systems which can be compromised like some WiFi APs, etc.

 

[LostCorpse]

Bit of discussion about it here:

Asus Routers

they have a very comprehensive array of features, and they are the same from one router to the next so you know what you are getting You basically just described OpenWRT. but honestly didn't understand the language and found the configuration really hard going. And my supplier, Zen, will not...

forums.overclockers.co.uk

ah appologies for that, didnt think to check that thread.

 

[Ice Tea]

Multiple ASUS Routers Impacted by New Security Vulnerability

Customers of ASUS' popular WiFi and broadband routers have been advised to ensure that they're on the latest firmware (software update) after security researc

www.ispreview.co.uk

8,000+ Asus routers popped in 'advanced' mystery botnet plot

: No formal attribution made but two separate probes hint at the same suspect

www.theregister.com