Interesting read from Ars Technica, https://arstechnica.com/information-technology/2020/01/internet-routers-running-tomato-are-under-attack-by-notorious-crime-gang/
The risk is present if you 1) have remote access turned on in Administration (which is not a default setting) and 2) you also have the default root/admin user/password. No systematic security issue was found in Tomato, just bad password management by some users.
If you see any of these IP addresses or domains in...
Muhstik botnet targeting IoT devices, including 4,600 Tomato based routers
The risk is present if you 1) have remote access turned on in Administration (which is not a default setting) and 2) you also have the default root/admin user/password. No systematic security issue was found in Tomato, just bad password management by some users.
If you see any of these IP addresses or domains in...
Muhstik botnet targeting IoT devices, including 4,600 Tomato based routers