Linksys and Netgear routers are the most highly infected, first being spotted infecting Netcomm NB5 modem/routers in Austrailia.
The most recent “worm” “version 18” targets a wide variety of devices, and contains the shellcode of over 25 different Linksys models and 10 Netgear models, including 15 other various cable and DSL modems.
Things you’ll notice in your router config is that ports 22, 23, and 80 will be blocked. If you do notice this, hard reset the router and reset the admin password. Since its mostley brute force that is used, make the password case sensitive and include numbers and symbols if you like.
Get the full story here