According to the Federal Bureau of Investigation public service announcement, every owner of "small office and home office routers" should reboot the devices by simply switching them off and on again.
The FBI said the size and scope of the infrastructure impacted by VPNFilter malware is significant though how it started is yet to be found. Several specific router models are known to be affected by VPNFilter, but Cisco Talos fears those might just be the tip of the iceberg.
The FBI is urging consumers to reboot their routers to mitigate the risk of being exposed to a major malware attack with ties to foreign cyber actors.
VPNFilter has also been targeting devices in Ukraine, which Talos notes "isn't definitive by any means".
Router manufacturers Linksys, MikroTik, Netgear, QNAP and TP-Link have posted instructions for users to follow to update their routers' software. It can collect information, exploit devices, and block web traffic.
If you've had router issues in the past, you're probably familiar with the rebooting process. The malware can do things like scoop up users' personal data and cripple website service. "If someone has access to your network they are going to see any information that you are passing through", he explains. The agency also suggests owners disable remote management settings and set up strong passwords. Unfortunately, this process will require you to setup your router again, add an admin password, and setup any wireless networks that are configured. The group is believed to be directed by Russia's military intelligence.
A full list of compromised routers can be found here. IoT started with computers, phones and tablets, but quickly has expanded to include voice-over-internet phone services, doorbells, security camera networks, thermostats, connected home devices such as Alexa, and even refrigerators.