What New Mirai campaign exploits RCE flaw in EoL D-Link routers Means for Bulacan Businesses

A Bulacan construction firm running three branches on old D-Link routers could have their entire network hijacked right now — and not even know it.

A new Mirai-based botnet is actively hunting routers with a critical remote code execution flaw. If your office still runs a D-Link DIR-823X, attackers can take control without your password.

Why an End-of-Life Router Is Now a Open Door

D-Link has stopped issuing security patches for the DIR-823X. That means CVE-2025-29635 will never be fixed — not by D-Link, not by your ISP.

Your team probably bought that router years ago because it was affordable and it worked. It still works. That's the problem — you never had a reason to replace it.

When Mirai infects a device, it doesn't just spy on you. It uses your connection to attack other networks, slowing your bandwidth and potentially flagging your IP address to government or enterprise filters.

Four Things to Check Before This Week Is Over

You don't need a full IT overhaul. Start with these four checks before your next brownout resets your priorities.

• Log into your router admin panel — check the exact model number
• Search "D-Link DIR-823X end-of-life" on D-Link's support page
• Change default admin credentials if you haven't already
• Disable remote management unless your team actively uses it
• Ask your IT provider when the router firmware was last updated

Replace It Before It Becomes Someone Else's Problem

A replacement business-grade router typically costs between ₱3,000 and ₱8,000. That's far less than one day of downtime during a client delivery cycle.

That said, hardware alone isn't enough — proper configuration matters just as much as the device itself.

If you're not sure what's running on your network, WNS5.tech offers network assessments for SMBs across Bulacan and Central Luzon.