Western agencies warn of russian hackers on tp-link routers

Português

The FBI, BND and BfV warn of attacks by Russian state hackers on TP-Link routers and WLAN extenders. The Fancy Bear group has infiltrated thousands of devices worldwide to steal sensitive data. In Germany, 30 affected devices have already been detected.

International agencies including the FBI, NSA, BND and BfV issued a joint warning on Monday evening. They attribute the attacks to the Fancy Bear group, also known as APT 28, linked to Russia's GRU military intelligence. The hacks target military, government and critical infrastructure data.

Since mid-March, German IT firms, restaurants and private individuals received confidential letters from the BfV. It stated: "A Russian state cyber actor is currently compromising TP-Link network devices." Affected parties were instructed on detecting and fixing infections. In Germany, experts confirmed compromises and are forensically examining devices.

Hackers have exploited a known vulnerability in TP-Link devices since 2024, fixable via firmware updates. Using DNS hijacking, they redirect web requests to controlled servers to steal passwords, emails and browsing histories. The UK's National Cyber Security Centre also reports attacks on MikroTik routers.

The BfV plans to act against APT 28. TP-Link, originally Chinese, faces scrutiny: Texas sued in February, and the US FCC recently banned imports for security reasons.

Artigos relacionados

Illustration depicting FCC ban on new foreign-made routers due to security risks, featuring banned router, US flag, and production shift to America.
Imagem gerada por IA

FCC bans new foreign-made routers as security risk

Reportado por IA Imagem gerada por IA

The Federal Communications Commission announced on March 23, 2026, that new consumer-grade routers manufactured outside the US pose an unacceptable national security risk and will be added to its Covered List. The ban applies to sales of new models but spares existing and previously authorized routers. Manufacturers may seek exemptions by planning to shift production to the US.

FBI urges router security steps after Russian GRU attacks

US federal agencies have disclosed that Russian military intelligence compromised thousands of small office and home routers, urging owners to take immediate protective measures.

Router firms respond to FCC foreign Wi-Fi ban amid cyber threats

Reportado por IA

Following the FCC's March 23 announcement banning sales of new Wi-Fi routers with major foreign manufacturing due to security risks, companies like TP-Link and Netgear have responded with production shift plans, while experts cite threats like Salt Typhoon and warn of update cutoffs after March 1, 2027. No exemptions granted yet; Starlink routers appear unaffected.

Tecnologia

US agencies warn of Iranian hackers targeting critical infrastructure PLCs

Política

German industry warns of risks to EU-US data agreement

Tecnologia

Netgear and Eero gain exemptions from FCC foreign router ban

New AirSnitch attack bypasses Wi-Fi client isolation

Researchers have unveiled AirSnitch, a series of attacks that undermine client isolation in Wi-Fi networks, allowing unauthorized communication between devices. The technique exploits low-level network behaviors and affects routers from major manufacturers including Netgear, D-Link, and Cisco. Presented at the 2026 Network and Distributed System Security Symposium, the findings highlight vulnerabilities in home, office, and enterprise setups.

FBI Atlanta dismantles Indonesian phishing network worth $20 million

Reportado por IA

FBI's Atlanta field office, with Indonesian authorities, has dismantled a sophisticated global phishing operation. The network stole thousands of victim account credentials and attempted fraud exceeding $20 million or Rp 342 billion. This marks the first joint cyber investigation of its kind.

segunda-feira, 20 de abril de 2026, 20:44h

China warns of retaliation to EU's cybersecurity crackdown on Huawei, ZTE

segunda-feira, 30 de março de 2026, 01:49h

FCC router ban: Cyberattack links and expert backlash

sexta-feira, 27 de março de 2026, 05:58h

European Commission confirms cyber attack on Europa.eu infrastructure

quarta-feira, 11 de março de 2026, 14:00h

Google report warns of shifting cloud threat landscape

quarta-feira, 11 de março de 2026, 07:15h

14,000 Asus routers infected by takedown-resistant KadNap malware

quarta-feira, 11 de março de 2026, 02:47h

Dutch intelligence accuses Russia of hacker attacks on WhatsApp and Signal

sexta-feira, 06 de março de 2026, 15:05h

FBI investigates claims of compromised systems and hijacked warrants

segunda-feira, 02 de março de 2026, 12:30h

Hackers hijack .arpa domain for phishing scams

quinta-feira, 26 de fevereiro de 2026, 11:39h

Zyxel warns of critical RCE flaw in over a dozen routers

Este site usa cookies

Usamos cookies para análise para melhorar nosso site. Leia nossa política de privacidade para mais informações.
Recusar