ASUS Confirms CVE-2025-2492 Critical Flaw in AiCloud Routers With 9.2 CVSS Score, Remote Hijack Risk; Firmware Update Urged

ASUS has confirmed a critical authentication bypass vulnerability affecting its routers equipped with AiCloud, identified as CVE-2025-2492. This flaw, rated 9.2 on the CVSS scale, allows remote attackers to execute functions on vulnerable devices, posing a remote hijack risk. Users are urged to update their firmware promptly to mitigate this threat. Separately, a different vulnerability, CVE-2025-24054, is actively exploited to steal NTLM credentials during file downloads. Additionally, SonicWall SMA appliances have been targeted by attackers since January 2025. In the broader cybersecurity landscape, the ransomware group Interlock has evolved its tactics in early 2025 by employing the ClickFix social-engineering technique and infostealers. A recent IBM report highlights that 30% of intrusions involve misuse of valid credentials, marking the second consecutive year that valid logins and exploitation of public-facing applications are the leading initial access vectors. Furthermore, rogue npm packages mimicking the Telegram Bot API have been used to plant SSH backdoors on Linux systems.