The Router Rebellion: How APT28 Is Hijacking Global DNS from Your SOHO Device

Failed to add items

Sorry, we are unable to add the item because your shopping cart is already at capacity.

Add to Cart failed.

Please try again later

Add to Wish List failed.

Please try again later

Remove from wishlist failed.

Please try again later

Adding to library failed

Please try again

Follow podcast failed

Please try again

Unfollow podcast failed

Please try again

The Router Rebellion: How APT28 Is Hijacking Global DNS from Your SOHO Device

Listen for free

View show details

What if the most critical vulnerability in your organization isn't in a server or an application, but in the forgotten router humming quietly in a remote office? A new global campaign attributed to Russian state-linked APT28 reveals they are doing exactly that, compromising thousands of small office/home office (SOHO) routers to seize control of the very foundation of the internet: the Domain Name System. This episode dives deep into the technical mechanics of how APT28, also known as Forest Blizzard, is exploiting insecure MikroTik and TP-Link devices. We'll explore how they modify router settings to redirect traffic, intercept credentials, and establish a stealthy foothold for espionage, turning common network hardware into weapons of cyber conflict. Listeners will gain a clear understanding of the scale of this threat, the specific router models and misconfigurations being targeted, and actionable steps to audit and secure their own network edge devices against this pervasive form of DNS hijacking. The battle for network integrity is being fought on a new, decentralized front. When your router lies, the entire internet follows. #APT28 #DNSHijacking #SOHORouterSecurity #MikroTik #TPLink #CyberEspionage #ThreatIntelligence Hosted by Ibnul Jaif Farabi. Produced by Light Knot Studios (lightknotstudios.com).

No reviews yet