Fourteen thousand home routers just became permanent residents in a botnet that security researchers can't kill.
The Signal
The malware, called "TheMoon," has infected primarily Asus routers across the United States, and here's what makes it different: it survives firmware updates and factory resets. The infection embeds itself in a way that makes traditional remediation useless. You can't just update your way out. The only fix is physically replacing the hardware.
This isn't theoretical anymore. We're watching edge devices, the entry points to home networks, become compromised infrastructure that persists indefinitely. These routers sit at the boundary between your home systems and the internet. Everything passes through them. Every smart device, every laptop, every AI agent you're about to run locally for privacy reasons.
The timing matters. As we move toward more local AI inference and edge computing, the security of these devices becomes critical infrastructure for the agent economy. Your AI agents need to trust the network they're running on. If the router itself is compromised, every action your agents take, every API call, every data transfer is potentially visible to someone else.
The concentration in consumer-grade Asus devices tells us something about the supply chain. This isn't sophisticated nation-state targeting. This is mass exploitation of known vulnerabilities in widely-deployed hardware. The barrier to securing your edge has just gotten higher and more expensive.
The Implication
If you're building or deploying AI agents that handle sensitive data, audit your network hardware now. Consumer routers aren't built for the threat model we're entering. Consider this the canary: as agents become more valuable, the infrastructure they run on becomes a higher-value target. Plan accordingly.