A reader pointed me towards a Bleeping Computer article which then led me to this advisory from ASUS which basically says this. There’s a list of ASUS routers that ASUS is urging customers to upgrade to the latest firmware ASAP because of a security threat that seems to be out there. The company is recommending the following:
We strongly encourage you to periodically audit both your equipment and your security procedures, as this will ensure that you will be better protected. As a user of an ASUS router, we advise taking the following actions:
- Update your router to the latest firmware. We strongly recommend that you do so as soon as new firmware is released. You will find the latest firmware available for download from the ASUS support page at https://www.asus.com/support/or the appropriate product page at https://www.asus.com/Networking/. ASUS has provided a link to new firmware for selected routers at the end of this notice.
- Set up separate passwords for your wireless network and router-administration page. Use passwords with a length of at least eight characters, including a mix of capital letters, numbers and symbols. Do not use the same password for multiple devices or services.
- Enable ASUS AiProtection, if your router supports this feature. Instructions on how to do this can be found in your router’s manual, or on the relevant ASUS support page, at https://www.asus.com/Networking/.
Please note, if you choose not to install this new firmware version, we strongly recommend disabling services accessible from the WAN side to avoid potential unwanted intrusions. These services include remote access from WAN, port forwarding, DDNS, VPN server, DMZ, port trigger.
The advisory also lists the following routers as being affected by whatever threat is out there:
- GT6
- GT-AXE16000
- GT-AX11000 PRO
- GT-AX6000
- GT-AX11000
- GS-AX5400
- GS-AX3000
- XT9
- XT8
- XT8 Version 2
- RT-AX86U PRO
- RT-AX86U
- RT-AX86S
- RT-AX82U
- RT-AX58U
- RT-AX3000
- TUF-AX6000
- TUF-AX5400
Now what strikes me as interesting is that a cursory look at the affected routers shows that a fair number of them have had firmware updates in the last few days. While others have not. Take the XT8 that I own for example. The last firmware update was in May which I wrote about my experiences with that. Others like the RT-AX86U PRO has have firmware updates in the last day or two. That might imply that all of these routers are about to get firmware updates shortly. But I am not 100% sure about that. It might be worth your while to keep an eye on the firmware page for your ASUS router to see if there’s an update for your router. As for if you should update to this new firmware, I would do so as there’s a clear benefit to doing so which is is security. But I would do it with caution and be prepared to roll back to an earlier firmware version as ASUS firmware can either be fine or buggy and there seems to be no middle ground in terms of that.
Trend Micro AI Protection In ASUS Routers…. Should I Use It?
Posted in Commentary with tags Asus, Trend Micro on September 3, 2023 by itnerdI got a question from a client who asked me about Trend Micro’s AI Protection which comes with most if not all routers made by ASUS. She wanted to know if it was safe to use from a privacy standpoint because of this 9to5mac.com article and this ZDnet.com. To answer that question, let’s first talk about what AI Protection does. In short, it does four things:
Now let’s talk about how it does this. AI Protection collects a ton of information about you and checks that against a database hosted by Trend Micro. What information it collects is clearly laid out here. There’s also a simplified version of this here. But let me boil it down for you. The relevant things that Trend Micro collects starts on page 10 of the English version of the first link. That’s a fair bit and I can see why that might bother some people. But consider this, Trend Micro is subject to the GDPR, which means that they have to clearly lay out what data they collect about you and why they do it. And if the EU who are behind the GDPR thinks that anything is fishy, they will not hesitate to smack Trend Micro pretty hard. That alone is an incentive for them to make sure that they are on the right side of this issue. Thus I feel that you should have nothing to worry about as it seems to me that this data is being used for security purposes.
Having said that, if you’re still uncomfortable with using AI Protection, then either don’t use it or do the following to turn it off:
In my case, I run AI Protection on my ASUS router as I like the security that it provides me. And I do recommend it to my clients. I don’t think there’s any real privacy risks here. But only you can decide if that’s true for you. Hopefully this article can help guide you to the decision that is right for you.
1 Comment »