Mastodawn

NEW: Russian government hackers Fancy Bear used thousands of hacked routers to steal passwords and credentials from espionage targets.

Microsoft says identified over 200 organizations and 5,000 consumer devices affected in the campaign. Lumen says there are at least 18,000 victims in ~120 countries.

U.K.'s NCSC said these operations are “likely opportunistic in nature, with the actor casting a wide net to reach many potential victims, before narrowing in on targets of intelligence interest as the attack develops.”

http://techcrunch.com/2026/04/07/russian-government-hackers-broke-into-thousands-of-home-routers-to-steal-passwords/

Russian government hackers broke into thousands of home routers to steal passwords | TechCrunch

Fancy Bear, also known as APT28, has taken over thousands of residential home routers to steal passwords and authentication tokens in a wide-ranging espionage operation.

TechCrunch

Show thread

Lorenzo Franceschi-Bicchierai 1d ago

UPDATE: The U.S. Department of Justice announced that, through a court order, the FBI “developed a series of commands to send to compromised routers” located on U.S. soil to collect evidence, reset settings, and prevent hackers from breaking back in.

https://techcrunch.com/2026/04/07/russian-government-hackers-broke-into-thousands-of-home-routers-to-steal-passwords/

Russian government hackers broke into thousands of home routers to steal passwords | TechCrunch

Fancy Bear, also known as APT28, has taken over thousands of residential home routers to steal passwords and authentication tokens in a wide-ranging espionage operation.

TechCrunch

Show thread

Lorenzo Franceschi-Bicchierai 1d ago

I'm old enough to remember when the possbility of something like this happening was seen as an outrageous and crazy idea. Are there still people who think this is not a net positive? Have we seen any bad examples of this?

Show thread

Viss

@lorenzofb remember all the hubbub about rsa backdooring ciscos way back when?