1. Forum
  2. Newsgroups
  3. comp.os.linux.misc

  • Russia Successfully Hacks Biz/Home Routers

    From c186282@c186282@nnada.net to comp.os.linux.misc on Tue Apr 7 21:14:39 2026
    From Newsgroup: comp.os.linux.misc

    https://united24media.com/latest-news/private-wi-fi-routers-targeted-in-global-russia-linked-cyber-operation-17708

    The Security Service of Ukraine (SBU) has conducted a coordinated
    cyber operation alongside the FBI, Polish counterintelligence,
    and EU law enforcement to stop Russian intelligence activities
    across Ukraine and partner nations.

    The international effort revealed that Russian military
    intelligence, known as the GRU, hacked numerous office and
    home Wi-Fi routers belonging to both Ukrainian and foreign
    citizens.

    Investigators found that Russian operatives specifically
    targeted routers that did not meet modern security standards.
    After gaining access to these vulnerable internet devices,
    the hackers redirected their traffic through a network of
    DNS servers.

    This allowed them to act as intermediaries in the digital
    space to collect passwords, authentication tokens, and other
    sensitive information. This included emails that are typically
    protected by SSL and TLS cryptographic protocols.

    . . .

    Yep ...

    And China is probably ahead of Russia in this stuff.

    "Security" ??? HA !!!

    --- Synchronet 3.21f-Linux NewsLink 1.2
  • From Andy Burns@usenet@andyburns.uk to comp.os.linux.misc on Wed Apr 8 08:06:03 2026
    From Newsgroup: comp.os.linux.misc

    c186282 wrote:

    Investigators found that Russian operatives specifically
    targeted routers that did not meet modern security standards.
    After gaining access to these vulnerable internet devices,
    the hackers redirected their traffic through a network of
    DNS  servers.

    Particularly targetting TP-LINK and MikroTik routers.

    --- Synchronet 3.21f-Linux NewsLink 1.2
  • From c186282@c186282@nnada.net to comp.os.linux.misc on Wed Apr 8 13:06:43 2026
    From Newsgroup: comp.os.linux.misc

    On 4/8/26 03:06, Andy Burns wrote:
    c186282 wrote:

    Investigators found that Russian operatives specifically
    targeted routers that did not meet modern security standards.
    After gaining access to these vulnerable internet devices,
    the hackers redirected their traffic through a network of
    DNS  servers.

    Particularly targetting TP-LINK and MikroTik routers.

    Must have been some flaw in the older models firmware
    they found out about.

    Note that the article named those two brands, but that
    does not mean others are safer.

    --- Synchronet 3.21f-Linux NewsLink 1.2
  • From Andy Burns@usenet@andyburns.uk to comp.os.linux.misc on Wed Apr 8 20:21:25 2026
    From Newsgroup: comp.os.linux.misc

    c186282 wrote:

    Particularly targetting TP-LINK and MikroTik routers.

      Must have been some flaw in the older models firmware
      they found out about.

    CVE-2023-50224

      Note that the article named those two brands, but that
      does not mean others are safer.


    --- Synchronet 3.21f-Linux NewsLink 1.2