✅ GOOD - FBI dismantles GRU/APT28 DNS hijacking network — 23+ states, thousands of routers, criti...

Summary

The FBI has successfully dismantled a DNS hijacking campaign attributed to Russia's GRU and APT28 threat group that compromised thousands of routers across 23+ US states and targeted critical infrastructure. The operation involved resetting affected devices and restoring legitimate DNS configurations, with ISPs now notifying impacted users. This represents a significant law enforcement action against a persistent state-sponsored cyber operation.

Indicators of Compromise

• mitre_attack — T1589.002 (DNS Records)

Entities