V-Help
← All news
Security

AryStinger Botnet Infects Thousands of D-Link Routers Worldwide

AryStinger Botnet Infects Thousands of D-Link Routers Worldwide

Photo: BleepingComputer

Quick answer

The AryStinger botnet has infected over 4,000 D-Link routers, converting them into proxies for malicious traffic.

Cybersecurity experts have identified a new threat—the AryStinger botnet, which has already compromised over 4,000 D-Link routers globally. Attackers are leveraging infected devices as proxy servers to relay malicious traffic, effectively masking attack sources and bypassing geographic restrictions.

The primary attack vector involves exploiting outdated firmware and weak default passwords. Most compromised devices had not received updates for extended periods, making them easy targets for automated attacks. Experts warn that the botnet could be used for spam campaigns, DDoS attacks, or distributing additional malware.

D-Link has issued guidelines to secure devices, including mandatory firmware updates and changing default credentials. Users are also advised to disable remote router management unless absolutely necessary. In case of infection, resetting the device to factory settings and reinstalling the firmware is strongly recommended.

Common questions

What is the AryStinger botnet?
AryStinger is a previously unknown malicious botnet that infects D-Link routers, turning them into proxies for transmitting malicious traffic. Its primary purpose is to use devices in cyberattacks.
How can I protect my router from infection?
Update the firmware to the latest version, replace default passwords with strong ones, and disable remote management if unnecessary. Regular vulnerability checks also reduce risks significantly.
Which D-Link models are vulnerable?
Primarily outdated router models that no longer receive security updates are at risk. The manufacturer is currently refining the list of affected devices.
Share:

Dzen feed: /feed/dzen.xml · RSS: /feed.xml

Why trust this

Prepared by the V-Help editorial team from the primary source with a published date.

Published by: V-Help.ru news desk

Source: BleepingComputer