> TritonInfoSec News
Home / Apr 09, 2026 / Story
0
#1 Dark Reading general April 09, 2026 at 01:00 UTC

Russia's Forest Blizzard Nabs Rafts of Logins Via SOHO Routers

By Nate Nelson

AI Summary

Russia's APT28 (Forest Blizzard) is conducting espionage by compromising vulnerable SOHO routers and modifying DNS settings to intercept credentials without deploying traditional malware. The campaign demonstrates a 'malwareless' approach to cyber espionage, allowing the group to spy on global organizations through simple router configuration changes.

Read full article → https://www.darkreading.com/threat-intelligence/ru…

Relevance score: 95.0/100

# More from April 09

  1. 2
    US Disrupts Russian Espionage Operation Involving Hacked Routers and DNS Hijacking SecurityWeek
  2. 3
    Iran-Linked Hackers Disrupt US Critical Infrastructure via PLC Attacks SecurityWeek
  3. 4
    FBI: Cybercrime Losses Neared $21 Billion in 2025 SecurityWeek
  4. 5
    13-year-old bug in ActiveMQ lets hackers remotely execute commands BleepingComputer
  5. 6
    Anthropic Unveils ‘Claude Mythos’ – A Cybersecurity Breakthrough That Could Also Supercharge Attacks SecurityWeek
  6. 7
    Python Supply-Chain Compromise Schneier on Security
  7. 8
    CISA orders feds to patch exploited Ivanti EPMM flaw by Sunday BleepingComputer
  8. 9
    N. Korean Hackers Spread 1,700 Malicious Packages Across npm, PyPI, Go, Rust The Hacker News
  9. 10
    Hackers use pixel-large SVG trick to hide credit card stealer BleepingComputer