Cisco’s Talos Intelligence Group Blog: New VPNFilter malware targets at least 500K networking devices worldwide
1 min readUPDATE: VPNFilter is now known to infect more routers than first expected and has increased capabilities such as performing Man-in-the-Middle attacks that can intercept usernames and passwords. Even https:// traffic is affected as the malware can downgrade the encryption from https:// to http://. In addition the malware can also infect the computers in the network that the infected router resides. This is a very nasty malware and if you had checked the list and found your router was not on the list, you may want to check again as the list has been updated to reflect more router manufacturers and models of existing router manufacturers.
A blog from the world class Intelligence Group, Talos, Cisco’s Intelligence Group
If you have a LinkSys, TP-Link, Microtik, or NetGear router, NAS, or other Networking Device; you may want to read this post! Note: this is still in the wild and an ongoing threat. Read link below for further details
UPDATE: This article gives some more information about the VPNFilter