Looks like I'm safe, at least for the present.

At work I've got Qualcomm's 5g with WiFi Certified and at home I just picked up the latest Motorola 20 channel quad-band.

I once used Linksys and Netgear. They worked as intended but that was long before the high-end demand/capabilities of routers nowadays.

I asked a few friends last evening when they last updated their router firmware. All said they never have. One asked if it was even a thing.

It's probably the forgotten hardware.

Looks like the U.S. FBI has shut down the master server:

FBI seizes domain Russia allegedly used to infect 500,000 consumer routers[arstechnica.com ]

That's true engine... and most routers don't run anti virus/malware getting updates.

Both my routers are higher-end so they have lots of controls on their web facing account pages, but once installed & preferences set, I've never gone back to maintain them... my bad.

For a few years now I've been reading about hacks targeted at routers. They're the target noone watches and I've read that many botnets are run from ISP customer's routers undetected.

Interestingly, the FBI issued a PSA for users to reboot their routers with the aim of disrupting the malware. It goes on the recommend updating the firmware.

[ic3.gov...]