Thousands of Asus routers have been hacked and are controlled by a suspected Chinese state-sponsored group. The attack targets outdated models that no longer receive security updates, and researchers believe the compromised devices may be used for covert operations and espionage. The majority of affected routers are located in Taiwan, with additional clusters in several other countries.

A security researcher discovered a significant remote code execution (RCE) vulnerability in ASUS's DriverHub software, which could be exploited due to inadequate origin checks in its RPC communication. The researcher detailed the exploit chain that could allow malicious code execution through ASUS-signed executables, ultimately leading to a successful report and patch from ASUS.