Researchers have uncovered a takedown-resistant botnet comprising 14,000 routers and other network devices primarily made by Asus. The malware, known as KadNap, exploits unpatched vulnerabilities to infect these devices. Notably, the high concentration of compromised Asus routers suggests that attackers have developed a reliable exploit for these models.
14,000 Routers Infected by Malware Resistant to Takedowns
Summary: Researchers have identified a botnet consisting of 14,000 routers and other network devices infected with malware called KadNap. This botnet uses a peer-to-peer design based on Kademlia to avoid detection and takedown efforts.
Key facts
- 14,000 routers and network devices are infected with the malware KadNap.
- The botnet uses a peer-to-peer structure based on Kademlia to avoid detection.
- Compromised devices are predominantly located in the US, Taiwan, Hong Kong, and Russia.
- Attackers have developed an exploit for vulnerabilities affecting Asus routers.
Why it matters
This botnet poses significant risks to cybersecurity and network integrity, as it uses advanced peer-to-peer technology to remain undetected and difficult to takedown. It highlights the ongoing challenge in protecting infrastructure from sophisticated cyber threats.