> TritonInfoSec News
Home / Apr 09, 2026 / Story
0
#2 SecurityWeek general April 08, 2026 at 10:54 UTC

US Disrupts Russian Espionage Operation Involving Hacked Routers and DNS Hijacking

By Eduard Kovacs

AI Summary

U.S. authorities disrupted APT28's operation exploiting vulnerable TP-Link and MikroTik routers across 120 countries to conduct adversary-in-the-middle attacks for credential theft. The Russian military hackers modified router DNS settings to hijack traffic and steal Microsoft 365 logins, demonstrating how end-of-life consumer devices become strategic intelligence assets.

Read full article → https://www.securityweek.com/us-disrupts-russian-e…

Relevance score: 94.0/100

# More from April 09

  1. 1
    Russia's Forest Blizzard Nabs Rafts of Logins Via SOHO Routers Dark Reading
  2. 3
    Iran-Linked Hackers Disrupt US Critical Infrastructure via PLC Attacks SecurityWeek
  3. 4
    FBI: Cybercrime Losses Neared $21 Billion in 2025 SecurityWeek
  4. 5
    13-year-old bug in ActiveMQ lets hackers remotely execute commands BleepingComputer
  5. 6
    Anthropic Unveils ‘Claude Mythos’ – A Cybersecurity Breakthrough That Could Also Supercharge Attacks SecurityWeek
  6. 7
    Python Supply-Chain Compromise Schneier on Security
  7. 8
    CISA orders feds to patch exploited Ivanti EPMM flaw by Sunday BleepingComputer
  8. 9
    N. Korean Hackers Spread 1,700 Malicious Packages Across npm, PyPI, Go, Rust The Hacker News
  9. 10
    Hackers use pixel-large SVG trick to hide credit card stealer BleepingComputer