Security company GreyNoise detected a campaign in mid-March where as many as 9,500 Asus routers were compromised by a threat actor named ViciousTrap. The attackers exploited multiple vulnerabilities, including a command injection flaw recently patched by Asus. Users can check for infection through their device’s SSH settings or if their system logs show access from particular IP addresses. Regular security updates are vital to preventing such attacks.
Silver Fox Uses Fake Tax Notices to Drop ValleyRAT and ABCDoor Backdoor
Silver Fox is running a tax‑themed phishing campaign that abuses fake notices from Indian and Russian tax authorities to drop ValleyRAT and a new Python
