Mastodawn

Thousands of Asus routers are being hit with stealthy, persistent backdoors
Backdoor giving full administrative control can survive reboots and firmware updates.
https://arstechnica.com/security/2025/05/thousands-of-asus-routers-are-being-hit-with-stealthy-persistent-backdoors/?utm_brand=arstechnica&utm_social-type=owned&utm_source=mastodon&utm_medium=social

Show thread

Dash Jackson May 29

@arstechnica class action when?

Show thread

CyberFrog

@dashjackson @arstechnica never, this happens daily, router companies in particular never get in trouble for this

Show thread

Dash Jackson May 29

@froge @arstechnica So frustratingly shitty of them to keep known backdoors open.

Show thread

Kevin Karhan

May 29

@dashjackson @froge @arstechnica this isn't new either.

#Microsoft refuses to fix their #CrpytoAPI #Backdoor so anything that uses it (all browsers excpet #Firefox & #TorBrowser as well as all eMail clients except #Thunderbird) are vulnerable, and that vulnerable is trigger-able with a single HTTPS request.

https://github.com/kkarhan/windows-ca-backdoor-fix

GitHub - kkarhan/windows-ca-backdoor-fix: Fixes a critical backdoor in Windows' CryptoAPI, which allows to unconsenting Update of CA Certificates in the background. See https://www.heise.de/ct/ausgabe/2013-17-Zweifelhafte-Updates-gefaehrden-SSL-Verschluesselung-2317589.html

Fixes a critical backdoor in Windows' CryptoAPI, which allows to unconsenting Update of CA Certificates in the background. See https://www.heise.de/ct/ausgabe/2013-17-Zweifelhafte-Updates-gefae...

GitHub

Show thread

�May 29

@kkarhan @dashjackson @froge @arstechnica

> all mail clients except thunderbird

is this really true? looking e.g. at gnome evolution

Show thread

MarjorieR May 29

@utf_7 @kkarhan @dashjackson @froge @arstechnica I don't think Evoution runs on Windows, unless you run it in WSL2.

Show thread

�May 29

@marjolica i missed the point that it is about windows, sorry

Show thread

Kevin Karhan

May 29

@marjolica @utf_7 @dashjackson @froge @arstechnica It'll impact any application that uses #Windows' #CryptoAPI and doesn't come with it's own #Encryption Library and #CertificateManagment.

IDK if the "#Linux Subsystem for #Windows" (The real "#WindowsSubsystemForLinux" is #Wine!) may or may not be as #cursed as to just wrap said functions into the #CryptoAPI instead of doing it with the applications' dependencies.

Needless to say all #Chromium variants and #IE / #Edge are vulnerable to this #Backdoor which exists since at least #WindowsXP to this day!

Thus consider said #OS inherently unsafe!