Network Security RondoDox botnet exploits old ASUS router vulnerability May 26, 2026 Share By SC Staff As detailed in HackRead, cybercriminals are actively exploiting a critical software vulnerability from 2018, CVE-2018-5999, to target older models of ASUS routers. This unauthenticated configuration update vulnerability, with a CVSS score of 9.8/10, allows attackers to alter router settings without requiring a password. The RondoDox botnet has been exploiting this vulnerability since May 17, as discovered by VulnCheck's Canary Network. Attackers send data payloads to set the "ateCommand_flag" to 1, which opens the router's internal system interface, infosvr, to unauthorized configuration changes. VulnCheck successfully used this method to change a router's admin password, and exploit code has been publicly available since 2018. With over one million ASUS routers online, the potential impact is significant. RondoDox, known for employing numerous exploits, primarily targets Linux-based systems for denial of service attacks. VulnCheck found that 56% of attacked internet edge devices in 2025 were consumer routers, and 65% of vulnerabilities used by botnets were on unsupported, end-of-life technology, making them easy targets for cybercriminals. Source: HackRead An In-Depth Guide to Network Security Get essential knowledge and practical strategies to fortify your network security. Learn More SC Staff Related Network Security ‘Underminr’ exploitation poses similar risks to domain fronting, researchers say Laura French May 22, 2026 ADAMnetworks estimates about 42% of domains could be abused using the technique. Network Security Terra Security expands platform to include network infrastructure exploitation validation SC Staff May 20, 2026 Terra's platform now allows security teams to validate vulnerabilities across web applications, AI systems, and network infrastructure from a single console. SASE Next-generation enterprise defense: Managing risk in the age of agentic AI Paul Wagenseil May 20, 2026 The advent of agentic AI demands re-engineered AI-powered SASE architectures. Related Events Cybercast How to transform your SOC through XDR and MDR On-Demand Event Cybercast AI for network security: Problems and solutions On-Demand Event Virtual Conference Fortifying the Foundation: Tackling Evolving Challenges in Network Security On-Demand Event Get daily email updates SC Media's daily must-read of the most current and pressing daily news Business Email By clicking the Subscribe button below, you agree to SC Media Terms of Use and Privacy Policy . Subscribe Related Terms Bridge Broadcast Broadcast Address Cache Poisoning Cell Crossover Cable Decapsulation Demilitarized Zone (DMZ) Domain Domain Name You can skip this ad in 5 seconds