Linux.Wifatch appears to be acting as a digital vigilante, protecting routers from other malware. Symantec researchers say the virus is a “Trojan that may open a back door on the compromised router” The code seems designed to harden, or protect, the infected devices. The code is not obfuscated, and it even includes debug messages making it easier to analyze. The virus was spotted in Internet-connected devices as far back as November 2014 and has been identified by over 13,000 others.”]

