**FBI and NSA Alert about Russian Compromise of Home Routers: Immediate Action Needed**
In a crucial cybersecurity warning, the FBI and NSA have collaboratively revealed that Russian military intelligence, particularly the GRU group referred to as APT28 or Fancy Bear, has been methodically infiltrating home and small office routers since at least 2024. This infiltration enables adversaries to capture credentials, authentication tokens, and confidential communications, presenting a significant risk to users.
The agencies have taken the rare measure of securing a court order to remotely reset thousands of impacted devices throughout the United States. Yet, they stress that without proactive steps from individual router owners, the security vulnerabilities will continue.
### Affected Devices
The routers flagged by the FBI are obsolete models that are no longer receiving security patches, rendering them especially susceptible. The specific models listed include:
– TP-Link TL-WR841N
– TP-Link LTE Wireless N Router MR6400
– TP-Link Wireless Dual Band Gigabit Router Archer C5
– TP-Link Wireless Dual Band Gigabit Router Archer C7
– TP-Link Wireless Dual Band Gigabit Router WDR3600
– TP-Link Wireless Dual Band Gigabit Router WDR4300
– TP-Link Wireless Dual Band Router WDR3500
– TP-Link Wireless Lite N Router WR740N
– TP-Link Wireless Lite N Router WR740N/WR741ND
– TP-Link Wireless Lite N Router WR749N
– TP-Link Wireless N 3G/4G Router MR3420
– TP-Link Wireless N Access Point WA801ND
– TP-Link Wireless N Access Point WA901ND
– TP-Link Wireless N Gigabit Router WR1043ND
– TP-Link Wireless N Gigabit Router WR1045ND
– TP-Link Wireless N Router WR840N
– TP-Link Wireless N Router WR841HP
– TP-Link Wireless N Router WR841N
– TP-Link Wireless N Router WR841N/WR841ND
– TP-Link Wireless N Router WR842N
– TP-Link Wireless N Router WR842ND
– TP-Link Wireless N Router WR845N
– TP-Link Wireless N Router WR941ND
– TP-Link Wireless N Router WR945N
Considering that these devices are no longer current, the FBI strongly advises replacing them to reduce the risk of further breaches.
### Security Best Practices
To strengthen router security, users are encouraged to implement the following measures:
1. **Enable Automatic Firmware Updates**: Set your router to receive firmware updates automatically to guard against vulnerabilities.
2. **Change Default Credentials**: Alter the default admin username and password to block unauthorized access.
3. **Disable Remote Management**: Turn off the remote management feature in the router’s admin settings unless it is necessary.
4. **Use a VPN**: The FBI particularly recommends that remote workers employ a VPN when accessing sensitive information for added security.
By adhering to these recommendations, users can significantly enhance their router security and safeguard their personal data from potential cyber threats.
