[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"focus:good-fbi-dismantles-gru-apt28-dns-hijacking-network-23-states-thousands-of-route-mnvwe779":3},{"item":4},{"id":5,"title":6,"slug":7,"summary":8,"severity":9,"category":10,"cve_ids":11,"affected_products":12,"action_required":13,"article_ids":14,"ioc_summary":16,"source_urls":17,"status":19,"expires_at":20,"created_at":21,"updated_at":22,"articles":23},"f13baa6f-1bb0-4106-9ea3-bf4419af92f4","✅ GOOD\n- FBI dismantles GRU\u002FAPT28 DNS hijacking network — 23+ states, thousands of routers, criti...","good-fbi-dismantles-gru-apt28-dns-hijacking-network-23-states-thousands-of-route-mnvwe779","Russia's GRU\u002FAPT28 compromised thousands of routers across 23+ US states through DNS hijacking targeting critical infrastructure. Affected devices had malicious DNS configurations redirecting traffic to attacker-controlled servers. ISPs are notifying customers, but any organization with on-premises routers or managed network infrastructure may still harbor compromised devices.","critical","advisory",[],[],"Audit all edge routers and DNS configurations across your environment immediately. Cross-reference against ISP notifications, verify DNS servers are legitimate, and check router logs for unauthorized configuration changes dating back 6+ months. Reset any devices with suspicious DNS settings.",[15],"6954ea14-7617-4eda-a2e2-802374a68f3a",null,[18],"https:\u002F\u002Fx.com\u002FSentinelOne\u002Fstatus\u002F2042709883104170045","archived","2026-04-14T15:07:38.112+00:00","2026-04-12T15:07:45.613155+00:00","2026-04-14T15:08:54.731139+00:00",[24],{"id":15,"title":6,"url":18}]