Russian government-linked hackers have compromised thousands of home routers in a widespread espionage operation targeting passwords and authentication credentials, according to UK cybersecurity authorities.

The hacking group, known as Fancy Bear or APT28, has been conducting the router infiltration campaign to steal sensitive login information from unsuspecting users. The group has established persistent access to residential networking equipment to intercept authentication tokens and passwords transmitted through compromised devices.

Fancy Bear is a well-documented Russian state-sponsored hacking group that has been linked to numerous cyberattacks and espionage operations targeting Western governments, military organizations, and civilian infrastructure. The group has previously been associated with attacks on democratic institutions and critical infrastructure systems.

The router compromise represents a significant escalation in tactics, as home networking equipment typically receives less security attention than corporate systems while providing access to personal and potentially sensitive communications. By targeting residential routers, the hackers can potentially monitor internet traffic and capture login credentials for various online services.

UK cybersecurity officials have warned about the ongoing nature of this campaign, though specific details about the number of affected devices or the timeline of the attacks have not been fully disclosed. The revelation highlights growing concerns about the security of consumer networking equipment and the need for regular firmware updates and stronger default security configurations.