Your router may be vulnerable to Russian hackers, FBI warns: 5 steps to take now

US federal agencies (FBI and NSA) warned that the Russian GRU-linked APT28 is targeting vulnerable SOHO routers worldwide to harvest credentials, authentication tokens, and perform DNS hijacking; older/end-of-life TP-Link devices and legacy routers are specifically mentioned. The advisory describes active exploitation at scale affecting government, military, critical infrastructure and consumer devices, and recommends mitigations including changing router admin passwords, updating firmware, replacing unsupported routers, disabling/tightening remote management, and periodic restarts.