Subj : If you have an Asus router, you need to patch it now or risk bein To : All From : TechnologyDaily Date : Tue Jun 20 2023 13:00:03 If you have an Asus router, you need to patch it now or risk being hacked Date: Tue, 20 Jun 2023 11:45:21 +0000 Description: Nine CVEs are addressed in one heavy-hitting Asus router security update, including one from 2018, so make sure you patch now. FULL STORY ====================================================================== Asus has pushed out a firmware update affecting many of its router models, and is urging customers to either apply the update immediately, or to restrict WAS access until they can. In a statement , the company noted that, If you choose not to install this new firmware version, we strongly recommend disabling services accessible from the WAN side to avoid potential unwanted intrusions, which includes remote access from WAN, port forwarding, DDNS, VPN server, DMZ, port trigger. The firmware update addresses no fewer than nine CVEs, including three from 2023, five from 2022, and one dating back as far as 2018. A number of other vulnerabilities and issues were also fixed as part of the motion. Asus Wi-Fi router security fix The routers in question include: GT6, GT-AXE16000, GT-AX11000 PRO, GT-AXE11000, GT-AX6000, GT-AX11000, GS-AX5400, GS-AX3000, XT9, XT8, XT8 V2, RT-AX86U PRO, RT-AX86U, RT-AX86S, RT-AX82U, RT-AX58U, RT-AX3000, TUF-AX6000, and TUF-AX5400. Read more > These are the best firewalls to keep you safe > Cisco routers are being targeted by custom Russian malware > These popular VPN routers are being hacked to spread malware The most serious vulnerabilities are among the oldest, including the 2018 entry which could be exploited to gain arbitrary code execution, and CVE-2022-26376 which could see unauthorized parties execute memory corruption attacks. Both were awarded a critical score of 9.8 under NISTs National Vulnerability Database. This comes precisely one month after the company disclosed an error in the configuration files for some of its routers which saw users connections interrupted - a fix was automatically issued and affected users did not need to apply a security update (though some reported rebooting the device was necessary). The best advice comes in the form of staying on top of security fixes for any device connected to the Internet to prevent attackers from gaining unwanted access. Asuss firmware updates are available on its support page . Like other router manufacturers, the Taiwanese company stresses the importance of setting up separate passwords for the wireless network and the router admin panel. Think youve been affected? Check out the best malware removal tools ====================================================================== Link to news story: https://www.techradar.com/pro/if-you-have-an-asus-router-you-need-to-patch-it- now-or-risk-being-hacked --- Mystic BBS v1.12 A47 (Linux/64) * Origin: tqwNet Technology News (1337:1/100) .