zdnet[.]com/article/cyclops-blink-botnet-launches-assault-against-asus-routers/
"Asus is likely only one of the vendors that are currently being targeted by Cyclops Blink," the researchers say. "We have evidence that other routers are affected too, but as of reporting, we were not able to collect Cyclops Blink malware samples for routers other than WatchGuard and Asus."In a security advisory published on March 17, Asus said it was aware of Cyclops Blink and is "investigating."
The vendor has urged customers to reset their devices to a factory default setting, to update their products to the latest firmware, and to change any default administrator credentials to stronger options. In addition, Asus recommends that the Remote Management function, disabled by default, remains so.
"If it is suspected that an organization's devices have been infected with Cyclops Blink, it is best to get a new router," Trend Micro added. "Performing a factory reset might blank out an organization's configuration, but not the underlying operating system that the attackers have modified."