The FBI is widening its guidance on who should reboot a SOHO router in response to the VPNFilter attack that infected more than a half million routers and network-attached storage devices. The new list? Everyone.
The original notices of the attack listed routers and instructed everyone with an affected router to reboot. Now, the FBI has broadened its instructions, directing everyone who owns a SOHO router to reboot now.
The FBI is calling for the reboot even though the agency acknowledges that the first-stage loader for the botnet is persistent, remaining in place through resets and reboots.
According to the Justice Department, the hacking collective known as APT28, or FancyBear, is responsible for the attack. The collective, considered a state-sponsored cybercriminal organization, is known as the group that played heavily in efforts to disrupt the 2016 US elections.
For more, read here.