The FBI Cyber Division is urging organizations to strengthen the security of their network infrastructure following the release of a joint cybersecurity advisory titled “Improve Router Hygiene to Protect Against Russian State-Sponsored Targeting.”
Issued in coordination with the Cybersecurity and Infrastructure Security Agency (CISA), the National Security Agency (NSA), the Department of Defense Cyber Crime Center (DC3), and international cybersecurity partners, the advisory warns that cyber actors affiliated with Russia’s Federal Security Service (FSB) Center 16 continue to exploit poorly configured and vulnerable networking devices worldwide.
According to the advisory, the Russian state-sponsored actors target internet-connected routers and other networking devices to gain unauthorized access to systems supporting critical infrastructure. Once compromised, these devices can provide adversaries with persistent access to networks that power essential services Americans rely on every day.
The campaign affects organizations across multiple critical infrastructure sectors, including communications, energy, financial services, healthcare, and government operations. By exploiting known vulnerabilities and weak device configurations, the actors can conduct cyber espionage, establish long-term access to victim networks, and potentially enable future disruptive cyber operations.
The advisory provides network defenders with technical details on the tactics, techniques, and procedures (TTPs) used by the Russian FSB cyber actors, along with practical recommendations to improve network security. Among the key mitigation measures are promptly applying firmware and software updates, correcting insecure router configurations, disabling unnecessary services, implementing strong authentication, monitoring networks for indicators of compromise, and following cybersecurity best practices to reduce risk.
“The FBI will continue to work with our partners to expose this activity and hold actors accountable,” the Bureau said in announcing the advisory.
Federal officials encourage public and private sector organizations—particularly operators of critical infrastructure—to review the advisory and implement the recommended mitigations to strengthen defenses against sophisticated nation-state cyber threats.
The advisory, “Improve Router Hygiene to Protect Against Russian State-Sponsored Targeting,” underscores the continuing importance of securing internet-facing networking devices, which remain attractive targets for foreign intelligence services seeking to gain access to sensitive networks and critical systems.



