Western agencies warn of russian hackers on tp-link routers

Kiswahili

The FBI, BND and BfV warn of attacks by Russian state hackers on TP-Link routers and WLAN extenders. The Fancy Bear group has infiltrated thousands of devices worldwide to steal sensitive data. In Germany, 30 affected devices have already been detected.

International agencies including the FBI, NSA, BND and BfV issued a joint warning on Monday evening. They attribute the attacks to the Fancy Bear group, also known as APT 28, linked to Russia's GRU military intelligence. The hacks target military, government and critical infrastructure data.

Since mid-March, German IT firms, restaurants and private individuals received confidential letters from the BfV. It stated: "A Russian state cyber actor is currently compromising TP-Link network devices." Affected parties were instructed on detecting and fixing infections. In Germany, experts confirmed compromises and are forensically examining devices.

Hackers have exploited a known vulnerability in TP-Link devices since 2024, fixable via firmware updates. Using DNS hijacking, they redirect web requests to controlled servers to steal passwords, emails and browsing histories. The UK's National Cyber Security Centre also reports attacks on MikroTik routers.

The BfV plans to act against APT 28. TP-Link, originally Chinese, faces scrutiny: Texas sued in February, and the US FCC recently banned imports for security reasons.

Makala yanayohusiana

Illustration depicting FCC ban on new foreign-made routers due to security risks, featuring banned router, US flag, and production shift to America.
Picha iliyoundwa na AI

FCC bans new foreign-made routers as security risk

Imeripotiwa na AI Picha iliyoundwa na AI

The Federal Communications Commission announced on March 23, 2026, that new consumer-grade routers manufactured outside the US pose an unacceptable national security risk and will be added to its Covered List. The ban applies to sales of new models but spares existing and previously authorized routers. Manufacturers may seek exemptions by planning to shift production to the US.

Texas sues TP-Link over suspected Chinese ties

The state of Texas has filed a lawsuit against TP-Link, citing concerns over the company's suspected links to China and potential security vulnerabilities. This legal action highlights ongoing worries about foreign influences in technology products. The suit was reported in a TechRadar article published on February 19, 2026.

Router firms respond to FCC foreign Wi-Fi ban amid cyber threats

Imeripotiwa na AI

Following the FCC's March 23 announcement banning sales of new Wi-Fi routers with major foreign manufacturing due to security risks, companies like TP-Link and Netgear have responded with production shift plans, while experts cite threats like Salt Typhoon and warn of update cutoffs after March 1, 2027. No exemptions granted yet; Starlink routers appear unaffected.

Siasa

EU commission aims to ban chinese risk technology from networks

Teknolojia

Zyxel warns of critical RCE flaw in over a dozen routers

Uchina

China-linked UAT-7290 targets telecoms with Linux malware

Iranian hackers escalate attacks on US critical infrastructure

A joint advisory from US agencies warns that Iranian hackers are intensifying cyberattacks on critical infrastructure sectors like water and energy. The attacks have caused operational disruptions and financial losses, according to the FBI. The warning comes amid heightened tensions in the Middle East.

China directs firms to halt use of US and Israeli cybersecurity software

Imeripotiwa na AI

Chinese authorities have instructed domestic companies to stop using cybersecurity software from more than a dozen US and Israeli firms due to national security concerns. The directive supports Beijing's drive to replace Western technology with homegrown alternatives amid intensifying tech competition with the United States. Three sources familiar with the matter said the notice was issued in recent days.

Fortinet FortiGate devices face automated attacks creating rogue accounts

Automated attacks are targeting Fortinet FortiGate devices, creating unauthorized accounts and stealing firewall data. A recent patch from Fortinet may not be as effective as anticipated. The issue was reported on January 23, 2026.

Berlin power outage update: Anarchist group claims arson attack responsibility

Imeripotiwa na AI

One day after an arson attack on a cable bridge over the Teltow Canal caused a major power outage in southwest Berlin, the left-extremist Vulkangruppe group has claimed responsibility, with authorities deeming the statement authentic. Governing Mayor Kai Wegner calls it terrorism. Partial reconnections are underway, but full restoration may take until Thursday.

Jumatatu, 30. Mwezi wa tatu 2026, 01:49:14

FCC router ban: Cyberattack links and expert backlash

Jumatano, 11. Mwezi wa tatu 2026, 07:15:19

14,000 Asus routers infected by takedown-resistant KadNap malware

Jumatano, 11. Mwezi wa tatu 2026, 02:47:16

Dutch intelligence accuses Russia of hacker attacks on WhatsApp and Signal

Ijumaa, 6. Mwezi wa tatu 2026, 15:05:36

FBI investigates claims of compromised systems and hijacked warrants

Alhamisi, 19. Mwezi wa pili 2026, 09:18:19

Experts claim ransomware attacks increasingly target firewalls

Jumatano, 4. Mwezi wa pili 2026, 19:25:39

Russian hackers exploit Microsoft Office vulnerability days after patch

Jumapili, 21. Mwezi wa kumi na mbili 2025, 12:02:47

Chinese hackers install backdoors via Cisco email zero-day

Ijumaa, 19. Mwezi wa kumi na mbili 2025, 11:19:21

Cisco email security products targeted in zero-day campaign

Jumatatu, 15. Mwezi wa kumi na mbili 2025, 06:01:35

Bundestag internet outage was no cyberattack

Jumamosi, 13. Mwezi wa kumi na mbili 2025, 22:13:21

Alleged Salt Typhoon hackers received Cisco training

 

 

 

Tovuti hii inatumia vidakuzi

Tunatumia vidakuzi kwa uchambuzi ili kuboresha tovuti yetu. Soma sera ya faragha yetu kwa maelezo zaidi.
Kataa