That little box in your hallway collecting dust? The FBI confirmed it may be working for Russia.
In April 2026, the FBI, NSA and Department of Justice issued a joint red alert. Russian military hackers, a GRU unit known as APT28 or Fancy Bear, have been hijacking thousands of home and small-office routers across 23 U.S. states.
The FBI went to court to get authorization to push fixes to compromised routers inside the U.S. That’s how serious this is.
And the DOJ was direct about it: The threat is not fully neutralized.
🕵️ How you get hijacked
Normally, when you type chase.com into your browser, your router looks up the address and takes you there. These hackers rewrote your router’s address book. So you type chase.com, and they silently redirect you to a fake login page that looks identical to the real one. You enter your password. They have it. You never knew anything happened.
No warning. No error message. Your browser shows the correct-looking URL the whole time.
The routers they targeted most: TP-Link WR841N and Ubiquiti EdgeRouters. Two of the most popular budget routers in the world. At the peak last December, more than 18,000 compromised routers across 120 countries were phoning home to Russian servers.
And this week, Medtronic confirmed hackers stole records tied to 9 million people. The FBI is busy. Nowhere feels safe.
🔒 What to do right now
First, a warning: A simple reboot won’t fix this. The FBI said so explicitly. You need a full factory reset. Here’s the sequence:
- Factory reset your router. Hold the reset button on the back for 10-30 seconds until the lights flash.
- Update your firmware immediately. Go to your manufacturer’s website, find your model, download the latest version.
- Change your default admin password. Never leave it as “admin” or “password.”
- Disable remote management. In your router settings, turn off anything labeled “Remote Access” or “WAN Management.”
Then add one more super important layer.
When you use ExpressVPN, your traffic gets encrypted before it even touches your router. Even if Russian hackers have rewritten your address book, all they intercept is scrambled, unreadable code. Your hardware could be compromised, but the encryption happens upstream of all of it.
Your router is the front door to everything in your house. Your bank. Your email. Your kids’ devices. The FBI is standing on your porch telling you the lock has been picked. That’s not just metaphor. That’s the actual press release.
Here’s what ExpressVPN does that your router can’t:
- Encrypts your traffic before it leaves your device. Hackers intercept scrambled code, not your passwords.
- Works on every device at once. Phone, laptop, tablet. One account covers up to 14 devices.
- Takes 30 seconds to turn on. Tap once. Done.
I use it myself. No referral fees. No kickbacks. That’s a straight recommendation from someone who covers this stuff every day.
✅ Right now, you get 4 extra months at ExpressVPN.com/Kim. Go do it.
📩 Send this to someone who has never logged into their router settings.
Sources: