Well this is just peachy – cybercriminals are actively using a malvertising campaign that infects routers and even Android devices. If the router is pwned, then every device connected to that router is pwned.
Proofpoint researchers warned that cyber thugs are using a new and improved version of the DNSChanger exploit kit (EK) for this malvertising campaign.
Generally, malvertising involves an attacker injecting malware into ads which can infect via browsers and attack a victim’s computer after simply visiting an affected page. Earlier this year, people were hit with malvertising just by visiting popular high-profile sites such as The New York Times, The Hill, MSN, BBC, NFL, AOL, Newsweek and my.xfinity.com. But this time, the malvertising exploit kit is aimed at routers.