Credential Leakage Issues in ASUS Routers and Countermeasures

The NICTER project conducts researches on the vulnerabilities of IoT devices, as well as observations of those exploitations. Recently, we found a new attack method that exploits the DDNS feature of ASUS routers and their management app ‘ASUS Router App’ to acquire router credentials. We formally reported this vulnerability to ASUS. In response, ASUS published an advisory on July 25, 2023, titled ‘Strengthening DDNS Security for RT-AX1800U, RT-AX3000, RT-AX3000 v2, RT-AX86U, TUF-AX3000 and TUF-AX5400’. [Read More]