AryStinger malware hijacks over 4,300 outdated routers in Asia
vulnerabilityopenJun 22, 2026 — Jun 23, 2026
Security researchers at QiAnXin XLab have uncovered AryStinger malware infecting over 4,300 outdated routers worldwide, particularly targeting RTL819X series devices. This malware exploits vulnerabilities such as CVE-2013-3307 and CVE-2016-5681 to create a large botnet for intrusion reconnaissance.
CyberSIXT is compiling the full intelligence briefing for this incident — gathering sources and cross-checking coverage. Check back in a few minutes.
Root sourceblog.xlab.qianxin.com
Timeline Coverage
Swipe to explore timeline
-
AryStinger malware hijacks over 4,300 outdated routers in Asia
securityonline.info
-
AryStinger Botnet Hijacks 4,300 D Link Routers for Network Recon
www.malwarebytes.com
-
AryStinger malware turns 4,300 old routers into spy network
securityaffairs.com