A newly identified malware strain called KadNap has quietly taken over more than 14,000 home routers and the majority of victims are in the United States.
Discovered by researchers at Black Lotus Labs (Lumen Technologies), KadNap primarily targets ASUS routers by exploiting known vulnerabilities. Once infected, the router is silently enrolled in a criminal proxy service called Doppelganger. From that point on, your home internet connection is being rented out to criminals who use it to launch attacks, run credential-stuffing campaigns, or conduct fraud all routed through your IP address to appear like ordinary residential traffic.
You would almost certainly never know it's happening. There's no performance warning, no alert, no indicator. Your router just quietly becomes a tool for someone else's crimes.
This is the real-world cost of "set it and forget it" router ownership. Most home routers never get updated after they're first installed, leaving known vulnerabilities open indefinitely.
Gryphon's automatic firmware updates close the vulnerability windows that botnets like KadNap exploit. Its vulnerability scanning proactively identifies risks before they're used against your network. And its intrusion protection system monitors traffic patterns that indicate botnet activity. You shouldn't have to think about this and with Gryphon, you don't have to.
John Wu
