The internet is bad enough with spam, popup ads, credit card theft, refrigerators that spam, DNS poisoning and the tons of things we have to look out for. Now we face routers with malware?
Did you know this wasn’t the first time. Well, it wasn’t malware. DNSChanger actually did change the DNS settings in some routers and believe it or not the FBI actually helped to shutdown the rogue name servers.
As the internet and technology grows so will the malicious people on the internet. Several articles on the web now indicate how a honeypot has captured the malware and how the routers are infecting other routers….
Infosec Handlers Diary Blog – routers infected in Wyoming
Infosec Community Forums – “TheMoon Captured”
PCWorld – “Weird, self-replicating ‘TheMoon’ worm crawls into Linksys routers”
ARSTechnica –Bizarre attack infects Linksys routers with self-replicating malware