FBI's Operation Masquerade Disrupts Russian GRU's Router-Based Cyberespionage
The FBI, in collaboration with U.S. and foreign government agencies, has successfully executed Operation Masquerade, a strategic takedown of a cyberespionage campaign orchestrated by APT28, also known as Fancy Bear, linked to Russia's Main Intelligence Directorate of the General Staff (GRU). This operation targeted over 18,000 compromised TP-Link routers used in small and home offices, which had been infiltrated to provide the Russian GRU with extensive access to internet traffic. The operation involved resetting the Domain Name System (DNS) settings on these routers to prevent further exploitation. Brett Leatherman, assistant director of the FBI's cyber division, highlighted the unique challenge posed by this attack, as it was virtually invisible to end users and did not involve traditional malware deployment. 
