darkreading.com·Apr 9, 2026
Russia's APT28 is conducting cyber espionage on global organizations by exploiting vulnerable routers, modifying only one DNS setting, in a method that doesn't rely on traditional malware.
For a professional in cybersecurity, the key insight is that APT28's novel approach of using malwareless cyber espionage highlights the critical importance of securing DNS settings in routers. This underscores the need for enhanced threat intelligence and rigorous configuration management to prevent such sophisticated, non-traditional attacks.