Ukraine’s Security Service (SBU), in cooperation with the FBI and European law enforcement agencies, has disrupted a large-scale cyber espionage operation conducted by Russia’s military intelligence, the SBU said on Wednesday, April 8.
According to the SBU, Russian operatives compromised office and home Wi-Fi routers in Ukraine, the European Union, and the United States to collect sensitive data.
JOIN US ON TELEGRAM
Follow our coverage of the war on the @Kyivpost_official.
The attackers targeted routers with outdated security protocols and redirected internet traffic through a network of controlled DNS servers.
This allowed them to intercept login credentials, authentication tokens, and other sensitive information, including emails protected by encryption protocols such as SSL and TLS.
The data was intended for use in cyberattacks, disinformation campaigns, and intelligence gathering, the SBU said.
Targets, impact
The operation focused in part on communications involving Ukrainian government officials, military personnel, and defense industry employees.
As part of the joint operation, more than 100 servers were blocked and hundreds of compromised routers in Ukraine were secured, according to the SBU.
Officials said the disruption weakened Russia’s intelligence capabilities and prevented further cyber activity.
Recommendations for users
The SBU urged router owners to update device software, install security patches, and change passwords.
Users were also advised to disable remote access to router settings and check configurations for suspicious activity.
Other Topics of Interest
