The FBI deployed a method to unplug US-based routers compromised by APT28 from the threat actor’s malicious network
US Thwarts DNS Hijacking Network Controlled by Russian APT28 Hackers
The FBI disrupted a DNS hijacking campaign orchestrated by Russian APT28 (Fancy Bear) hackers, compromising US-based routers by redirecting traffic to malicious servers. The attack targeted Cisco and Juniper routers running outdated firmware, allowing unauthorized network control and potential espionage or disruption. Critical infrastructure sectors, including government and private networks, were at risk of data exfiltration or sabotage.