initial recommendation from the FBI was to turn vulnerable routers off and on, temporarily removing the second stage of the malware and prompting the first stage to call the command &control centers for directions – enabling security researchers to learn more about the malware structure.
There are two primary issues to keep in mind with VPNFilter and your router.
First, there is no single smoking gun or zero-day router vulnerability behind this. It seems that the hackers have cobbled together several existing vulnerabilities to do their nasty deeds. There is no one-point solution either. Say goodbye to certainty.
Second, your whole network is at risk. VPNFilter’s capability to pass additional malware on to the other devices in your network and to degrade communications down to unencrypted status means that all devices and activity on the network is at risk of being hacked and manipulated.
Here are four basic steps to enhancing your router security in this post VPNFilter world: