Timeline

APT28

Russian GRU military intelligence cyber unit; attributed with DNS-hijacking home routers to steal Microsoft 365 credentials.

2 events

FiltersHide mentions

#117 Apr

Exploited SOHO routers to hijack DNS and harvest Microsoft 365 OAuth tokens via adversary-in-the-middle attacks since 2024

Cybersecurity: Threats and Defences: GRU hijacks home routers for M365 logins

#117 Apr

Targeted messaging app accounts of high-risk individuals using contact impersonation techniques

Cybersecurity: Threats and Defences: Signal, WhatsApp hit by three states

← Back to APT28