Dossier
MikroTik
Coverage of MikroTik in the Nexus archive.
- Thousands of consumer routers hacked by Russia's military
The Russian military, through the APT28 group linked to the GRU, has hacked 18,000 to 40,000 consumer routers in 120 countries. These routers were used to spy on government agencies and alter DNS settings for Microsoft's 365 service. Researchers from Lumen Technologies' Black Lotus Labs reported the breach.
- Authorities disrupt router DNS hijacks used to steal Microsoft 365 logins
Law enforcement and private companies disrupted FrostArmada, an APT28-linked campaign exploiting MikroTik and TP-Link routers to steal Microsoft account credentials. The operation targets DNS hijacking methods used to compromise Microsoft 365 logins globally.