Watch Out! This Android Malware Hijacks Your Router

A nasty new Android Trojan isn't targeting your smartphone, but your home Wi-Fi router instead.

Credit: Casezy Idea/Shutterstock

(Image credit: Casezy Idea/Shutterstock)

The malware, spotted by Kaspersky Lab researchers late last month and dubbed Switcher, pretends to be either of two legitimate Chinese-language Android apps — one for the Baidu search engine, and the other a common app for sharing Wi-Fi network details.

Once installed on an Android phone, Switcher will bombard the user's Wi-Fi router with a laundry list of default administrative passwords, then change the router's settings if it gets in.

MORE: Best Android Antivirus Apps

North American users may not have to worry yet, as Switcher lives in off-road app markets catering to mainland Chinese customers. (The Google Play store is restricted in the People's Republic, and many users there install apps from dodgy sources.) But we've seen new attack methods spread from China to other parts of the world before.

According to a document spotted by Kaspersky researchers on the Switcher command-and-control website, nearly 1,300 home Wi-Fi networks in China have already fallen victim to Switcher.

To make sure you're not infected by this malware, go into your Android settings menu, select Security and make sure Unknown Sources is toggled off. That way, you won't be able to install any app from outside the Google Play store. All Android users should also consider running Android antivirus software, as even Google Play isn't immune from malicious apps.

However, none of that will protect your home Wi-Fi router, which may still be using the default admin credentials. Dig out your router instruction manual, log into the administrative screen and make sure the administrative username and password are something you came up with, not something that was set at the factory.

While you're at it, check to see whether any firmware updates are available for your router. You may have to download something to a PC, then upload it to the router, but even if so, your resulting peace of mind will be well worth the effort.

What's so bad about changing a router's settings? Put it this way: He who controls the router controls the network. A bad guy in charge of your will be able to hijack your entire internet experience, from stealing your personal information to sending you to malicious websites.

Paul Wagenseil

Paul Wagenseil is a senior editor at Tom's Guide focused on security and privacy. He has also been a dishwasher, fry cook, long-haul driver, code monkey and video editor. He's been rooting around in the information-security space for more than 15 years at FoxNews.com, SecurityNewsDaily, TechNewsDaily and Tom's Guide, has presented talks at the ShmooCon, DerbyCon and BSides Las Vegas hacker conferences, shown up in random TV news spots and even moderated a panel discussion at the CEDIA home-technology conference. You can follow his rants on Twitter at @snd_wagenseil.

Latest in Routers
The eero Pro 7 next to the eero Max 7 on a desk
Eero Pro 7 vs Eero Max 7: Which Wi-Fi 7-powered eero mesh system should you buy?
Eero Pro 7 sitting on counter
Eero Pro 7 review: Fast Wi-Fi 7 mesh speeds simplified
Netgear Orbi 873 on desk
Netgear Orbi 870 review: A great Wi-Fi 7 mesh kit for long range performance
TP-Link's Deco BE65-Outdoor Wi-Fi 7 mesh node mounted to a pole at CES 2025
TP-Link’s new outdoor mesh extender will give you true Wi-Fi 7 speeds right in your backyard
The MSI Roammii BE Lite dual-band mesh Wi-Fi 7 router on a table
Upgrading to Wi-Fi 7 is about to get more complicated — and these new routers are to blame
TP- Link Archer AX55 sitting on desk
This Chinese router company with 65% market share in the US could be banned — what you need to know
Latest in News
Sonos logo on a smart speaker
Sonos halts work on rumored super steaming device — what's next?
NYTimes Connections
NYT Connections today hints and answers — Thursday, March 13 (#641)
HomePod with display concept render
Apple HomePod with display now rumored for late 2025 launch
The Apple Watch Series 10 on display at the device's launch in September 2024
Apple Watch sales plummet 19% as smartwatch market declines for first time
Google's Project Astra working on prototype smartglasses in an advertisement
Google just acquired this eye tracking company — hinting at the return of Google glasses
iPhone 17 Air render
iPhone 17 Air could be just 5.5mm thick — but 9.5mm when you throw in the camera bump