A hidden backdoor has been discovered in the firmware of carrier-grade routers used by telecommunications providers. The backdoor allows remote access using a hardcoded SSH key and provides root-level access to the device.
Complete compromise of network infrastructure, potential for traffic interception and manipulation, network outage capabilities, and possible access to customer data flowing through compromised routers.
Immediately disconnect affected routers from production networks. Flash firmware to version 21.1 or later which removes the backdoor. Conduct thorough security audit of network traffic.