14,000 routers are infected by malware that's highly resistant to takedowns
Summary
Ars Technica reports a takedown-resistant botnet KadNap has infected about 14,000 routers and network devices, mostly Asus, creating a decentralized proxy network for cybercrime. The malware uses a peer-to-peer DHT-based design to evade takedowns; infection persists even after restarts; remediation includes factory resets, firmware updates, strong passwords, and disabling remote management. Public indicators of compromise are shared to help defenders.