#cve-exploitation

[ follow ]
#operation-wrthug #asus-wrt #aicloud #router-botnet #asus-wrt-routers #ayysshush #china-linked-activity
fromThe Hacker News
3 weeks ago

WrtHug Exploits Six ASUS WRT Flaws to Hijack Tens of Thousands of EoL Routers Worldwide

A newly discovered campaign has compromised tens of thousands of outdated or end-of-life (EoL) ASUS routers worldwide, predominantly in Taiwan, the U.S., and Russia, to rope them into a massive network. The router hijacking activity has been codenamed Operation WrtHug by SecurityScorecard's STRIKE team. Southeast Asia and European countries are some of the other regions where infections have been recorded. The attacks likely involve the exploitation of six known security flaws in end-of-life ASUS WRT routers to take control of susceptible devices. All the infected routers have been found to share a unique self-signed TLS certificate with an expiration date set for 100 years from April 2022.
Information security
Information security
fromTheregister
3 weeks ago

50k more ASUS routers pwned by evolving Beijing-linked op

Approximately 50,000 end-of-life ASUS WRT routers were compromised by Operation WrtHug, exploiting multiple known vulnerabilities and primarily affecting Taiwan and Southeast Asia.
[ Load more ]