A threat monitoring firm GreyNoise reports that the attacks combine brute-forcing login credentials, bypassing authentication, and exploiting older vulnerabilities to compromise ASUS routers, including the RT-AC3100, RT-AC3200, and RT-AX55 models.
The RT-Ax55 does not provide a method to view when a administrator logs into the router in the logs. If a brute force attack occurs where someone is trying to guess the password the adminstrator has no way of knowing.
I would suggest the router record in the log when ever a administrator logs into the router and when a log in fails.
