DNS Hijacking on Juan Carlos Munera

DNS Hijacking on Juan Carlos Munerahttps://cybersecpro.me/tags/dns-hijacking/Recent content in DNS Hijacking on Juan Carlos MuneraHugo -- gohugo.ioen© 2026 Juan Carlos MuneraThu, 16 Apr 2026 00:00:00 +0000Operation Masquerade: FBI Disrupts APT28 Campaign Across 18,000 Hijacked Routershttps://cybersecpro.me/posts/operation-masquerade-fbi-apt28-router-dns-hijacking/Thu, 16 Apr 2026 00:00:00 +0000https://cybersecpro.me/posts/operation-masquerade-fbi-apt28-router-dns-hijacking/The threat group tracked as APT28 (Forest Blizzard/Fancy Bear) compromised 18,000 SOHO routers across 120+ countries by exploiting known vulnerabilities and default SNMP credentials. They modified DNS settings to redirect traffic through attacker-controlled servers, enabling adversary-in-the-middle attacks that harvested Microsoft OAuth tokens, passwords, and emails from 200+ organizations. The FBI’s Operation Masquerade sent court-authorized commands to reset compromised routers on U.S. soil.