Published 18 hours ago • loading... • Updated 2 hours ago

Russian government hackers broke into thousands of home routers to steal passwords

On Tuesday, the U.S. Justice Department and international partners executed "Operation Masquerade," a court-authorized disruption of a DNS-hijacking network controlled by Russia's GRU military intelligence unit.
Since at least 2024, Russian intelligence unit Fancy Bear has exploited vulnerabilities in home and office routers, redirecting internet traffic through malicious DNS servers to intercept passwords, authentication tokens, and sensitive emails.
Microsoft identified more than 200 organizations and 5,000 consumer devices impacted by the hacking operation, which primarily targeted TP-Link routers to compromise credentials connected to military, government, and critical infrastructure sectors worldwide.
The FBI and Ukraine's Security Service urged users to perform factory resets, update firmware, and disable remote management on devices to secure systems against future exploitation by state-sponsored actors.
Blocking more than 100 servers significantly weakened Russia's intelligence capabilities and prevented further interception of encrypted traffic, a persistent threat requiring continued vigilance from network defenders and device owners.

Insights by Ground AI

38 Articles

The Kyiv Independent

Lean Left

SBU, FBI uncover Russian router hacking campaign

Ukraine's SBU says Russia's GRU used hacked Wi-Fi routers to spy on users in Ukraine, Europe, and the U.S.

13 hours ago·Kyiv, Ukraine

Read Full Article

UPI

Reposted by

Upstract

Center

FBI: Russia-backed Fancy Bear hackers used Wi-Fi routers to steal data

A Russian hacking group financed by the spy agency GRU managed a campaign to steal information about militaries and governments, the FBI said.

14 hours ago·Washington, United States

Read Full Article

World

Right

FBI remotely resets small Wi-Fi routers hacked by Russia

WORLD is a news organization producing Biblically sound, daily coverage of global, national, and cultural current events.

14 hours ago·Asheville, United States

Read Full Article

Euronews

Center

Russian GRU hackers exploited vulnerable routers globally, probe shows

An international investigation revealed how Russia’s GRU cyber unit, known as "Fancy Bear," managed to steal sensitive information from governments and the military using badly protected routers.

15 hours ago·France

Read Full Article

Libertad Digital

Lean Right

Usa Excludes Spain From an Operation Against Russian Espionage Based on Domestic Routers

The FBI intervened in thousands of infected devices and blocked a GRU network active since 2024 that had stolen credentials worldwide.

16 hours ago

Read Full Article

Lietuvos Radijas ir Televizija

Center

Vsd: Russian Gru Used Vulnerable Routers Abroad to Steal Secret Information

Jungtinių Amerikos Valstijų (JAV) Federalinių tyrimų biuro (FTB) koordinuotoje tarptautinėje operacijoje dalyvavęs Valstybės saugumo departmentas (VSD) skelbia, kad jos metu buvo neutralizuotas su Rusijos karinės žvalgybos tarnybos GRU siejamos kibernetinės grupuotės "APT28" išnaudotas pažeidžiamų maršrutizatorių tinklas.

16 hours ago·Vilnius, Lithuania

Read Full Article

Think freely.Subscribe and get full access to Ground NewsSubscriptions start at $9.99/year