Skip to main content
  1. Home
  2. Computing
  3. News

Russian hackers keep finding their way into critical networks through neglected routers

A multinational warning says outdated firmware, weak passwords, and insecure settings are giving state-backed attackers an easy opening

Add as a preferred source on Google
A Wi-Fi router next to a laptop.
Getty Images

Russian state-backed hackers have spent more than a decade exploiting a stubborn weakness in critical infrastructure networks. Organizations are still leaving poorly configured and outdated routers exposed to the internet.

In a joint cybersecurity advisory, the NSA, CISA, FBI, and international partners warn that hackers linked to Center 16 of Russia’s Federal Security Service are continuing to target vulnerable networking equipment. Energy, healthcare, and government networks are among the sectors facing the highest risk.

Recommended Videos

One forgotten device can expose credentials and reveal how a much larger network fits together.

How the routers are being exposed

The hackers scan internet-facing networks for routers running poorly secured versions of Simple Network Management Protocol, better known as SNMP. Devices that accept common or default authentication strings can be instructed to copy their configuration files and send them to attacker-controlled servers.

Russian Federal Security Service (FSB) Center 16 cyber actors continue to exploit poorly configured and vulnerable networking devices worldwide, targeting devices across critical infrastructure sectors. These vulnerabilities can give hostile actors access to the systems that… pic.twitter.com/K5Po1v87Fu

— FBI Phoenix (@FBIPhoenix) July 14, 2026

Older Cisco equipment presents another route inside. The group has exploited known vulnerabilities and abused Cisco Smart Install, a feature that may remain enabled long after deployment. None of this requires some dazzling Hollywood hack when obsolete protocols and weak configurations are already exposed.

What attackers gain from a router

Router configuration files can contain credentials and show how a network is organized. Once copied, that information helps the hackers identify other systems and choose where to concentrate their efforts.

The campaign focuses on gathering access instead of causing immediate disruption. That quieter approach can keep a compromise hidden while giving the Russian government information it could use as its strategic priorities change. The router is only the first target, and the useful prize sits behind it.

How organizations can close the door

The agencies recommend replacing outdated routers, installing current firmware, and disabling Cisco Smart Install. Network defenders should also move from the obsolete SNMPv1 and SNMPv2 protocols to SNMPv3, which adds stronger authentication and encryption.

Organizations should use strong, unique passwords and restrict management protocols to trusted devices. Suspicious requests and unusual local-account logins also need monitoring.

These are basic security measures, but skipping them means state-backed hackers may never need their cleverest tools. Organizations should audit their internet-facing networking equipment now, starting with any router that no longer receives security updates.

Paulo Vargas
Paulo Vargas is an English major turned reporter turned technical writer, with a career that has always circled back to…
Falling in love with a chatbot is now off limits for kids in China
The crackdown targets emotional AI relationships as regulators worry about the country's record low birthrate.
Replika AI companion app on an iPhone in hand

Ever since AI chatbots arrived on the scene, there has been one aspect that has worried lawmakers and experts a lot: humans forming emotional connections with chatbots. There have been plenty of cases where over-reliance on these AI companions or partners has resulted in medical emergencies, lost lives, and triggered multiple lawsuits against the likes of OpenAI and Meta.

China cracks down on AI companion apps

Read more
Canva Code 2.0 just made vibe coding way less intimidating for everyone
Canva Code 2.0 feature

Coding used to be reserved for developers who spent years learning complex languages. That has slowly changed with vibe coding, which lets you build apps and websites using simple, plain-language prompts. 

The problem is that most of these tools still feel intimidating for regular folks, as they still need to understand the code to make any meaningful changes. If not, everything you make tends to look the same.

Read more
Windows users can finally pick when updates stop with Microsoft’s latest patch
From pausing updates on your own schedule to rolling back a broken PC in one click, here's everything new in Windows 11's July 2026 update.
Windows 11 Laptop

Patch Tuesday updates are usually a shrug-and-install affair, but Microsoft's July 2026 release actually gives you something to be excited about.

You can grab this update, tagged KB5101650, right now through Settings, or manually via the Microsoft Update Catalog if you'd rather not wait for it to roll out.

Read more