https://www.ncsc.gov.uk/news/apt28-exploit-routers-to-enable-dns-hijacking-operations
APT28 exploit routers to enable DNS hijacking operations | National Cyber Security Centre
Russian cyber actor APT28 exploit vulnerable routers to hijack DNS, enabling adversary‑in‑the‑middle attacks and theft of passwords and authentication tokens.
dns hijackingcyber securityapt28exploitrouters
https://www.first.org/global/sigs/dns/stakeholder-advice/detection/local-resolver-hijacking
DNS Abuse Detection: Local recursive resolver hijacking
dns abusedetectionlocalrecursiveresolver
https://www.first.org/global/sigs/dns/stakeholder-advice/detection/stub-resolver-hijacking
DNS Abuse Detection: Stub resolver hijacking
stub resolver hijackingdns abusedetection