A new attack, dubbed "Operation WrtHug," has compromised around 50,000 outdated ASUS WRT routers, primarily in Taiwan and Southeast Asia. Researchers suspect the campaign is linked to China, leveraging multiple known vulnerabilities to facilitate stealthy espionage.

Scammers are exploiting unsecured cellular routers from Milesight IoT to launch SMS phishing campaigns, known as smishing, that have been active since October 2023. Researchers found over 18,000 routers exposed online, with many allowing unauthorized access and running outdated firmware, making them an effective tool for decentralized phishing efforts targeting users in multiple countries.