https://arstechnica.com/information-technology/2018/05/hackers-infect-500000-consumer-routers-all-over-the-world-with-malware/
My advice: if you own a router on that list, junk it and get a different one. If you can't do that, do a hard reset if it's not infected and junk it and get a different one if it is infected.
Have been reading this over the weekend... I had an idea to somehow compile a sha256 of every file within the router and check the list to see if it's known malware. The concerns with this are that it might take too long on the router itself. I googled and looks like busybox supports it. Even after obtaining a full sha list, I'm not sure if the malware will be picked up yet. But looks like this will be the start of some changes for routers which are basically low power, light weight Linux computers. No root ssh login for example might be a good start. Antivirus on a router? With <600mhz cpu? hmm. :twitch: It might be okay if it goes the Cisco AMP route and uses sha hashes.
This is why I hate IoT... we need to seriously turn the clock back to before 2014.