The FBI Says Your Router Is Helping Russian Hackers

But there’s one simple thing you can do to fix it.

Alexei Druzhinin/Planet Pix via ZUMA

For indispensable reporting on the coronavirus crisis, the election, and more, subscribe to the Mother Jones Daily newsletter.

The Federal Bureau of Investigation made an announcement on Friday that went a bit under the radar, but is huge: Russian hackers devised a sophisticated malware system that has infected hundreds of thousands of internet routers in the United States as part of its ongoing effort to undermine American democracy.

“Foreign cyber actors have compromised hundreds of thousands of home and office routers and other networked devices worldwide,” the agency wrote on a public service announcement released on Friday. “The malware is able to perform multiple functions, including possible information collection, device exploitation, and blocking network traffic.”

The agency called the size and scope of the problem “significant.”

The FBI says that the Russian hacker group “Fancy Bear” is behind the new malware. Fancy Bear is reportedly directed by Russia’s military intelligence agency and is responsible for hacking into the Democratic National Committee ahead of the 2016 presidential election. An estimated 500,000 routers in at least 54 countries were infected with the malware. And devices from major router manufacturers including Linksys, MikroTik, Netgrear, and TP-Link were all affected.

The FBI has since seized a domain name associated with Fancy Bear, www.toknowall.com, which it says was a critical part of the malware’s “command-and-control infrastructure,” according to the New York Times

“This court-ordered seizure will assist in the identification of victim devices and disrupts the ability of these hackers to steal personal and other sensitive information and carry out disruptive cyberattacks,” Scott W. Brady, United States attorney for the Western District of Pennsylvania, said in the statement to the Times

Worried that you’re router’s been compromised? The FBI recommend several steps, including rebooting it, disabling remote management settings, and using a stronger password, especially when encryption is enabled.

DOES IT FEEL LIKE POLITICS IS AT A BREAKING POINT?

Headshot of Editor in Chief of Mother Jones, Clara Jeffery

It sure feels that way to me, and here at Mother Jones, we’ve been thinking a lot about what journalism needs to do differently, and how we can have the biggest impact.

We kept coming back to one word: corruption. Democracy and the rule of law being undermined by those with wealth and power for their own gain. So we're launching an ambitious Mother Jones Corruption Project to do deep, time-intensive reporting on systemic corruption, and asking the MoJo community to help crowdfund it.

We aim to hire, build a team, and give them the time and space needed to understand how we got here and how we might get out. We want to dig into the forces and decisions that have allowed massive conflicts of interest, influence peddling, and win-at-all-costs politics to flourish.

It's unlike anything we've done, and we have seed funding to get started, but we're looking to raise $500,000 from readers by July when we'll be making key budgeting decisions—and the more resources we have by then, the deeper we can dig. If our plan sounds good to you, please help kickstart it with a tax-deductible donation today.

Thanks for reading—whether or not you can pitch in today, or ever, I'm glad you're with us.

Signed by Clara Jeffery

Clara Jeffery, Editor-in-Chief

payment methods

We Recommend

Latest