Russian Hackers Hijack Routers, Iran Disrupts US Infrastructure, Trump Admin Seeks Federal Medical Records

  • APT28 reportedly exploited vulnerable routers for DNS hijacking.
  • Hackers allegedly redirected traffic to attacker-controlled servers.
  • Outlook credentials targeted in global espionage effort.

USA, Apr 08 (TNGB) – Security officials detailed a sustained campaign by actors linked to Russian military intelligence who compromised consumer-grade routers worldwide. The group known as APT28 or Forest Blizzard modified DHCP and DNS configurations on TP-Link and MikroTik devices to enable adversary-in-the-middle attacks. This setup allowed interception of authentication data from Microsoft Outlook and related services. The activity persisted since at least May 2025 according to the UK National Cyber Security Centre advisory and focused on devices with potential strategic value. Users and network administrators received urgent recommendations to update firmware or replace affected hardware. The US Department of Justice previously disrupted similar GRU-controlled DNS networks.

Router owners must act swiftly to block these persistent state-sponsored intrusions.

Iran Linked Hackers Disrupt Operations at US Critical Infrastructure Sites

  • Iran-linked actors reportedly targeted programmable logic controllers.
  • Disruptions allegedly hit energy and water facilities.
  • Federal agencies warned operators about increased activity.

WASHINGTON D.C., Apr 08 (TNGB) – United States authorities documented intrusions by hackers connected to Iran that affected operational technology at several critical sites. The actors focused on internet-exposed programmable logic controllers in sectors including oil and gas production plus water treatment plants. These efforts caused temporary operational issues without physical damage in documented cases. The FBI, CISA, NSA, EPA, and Department of Energy jointly issued guidance to owners and operators. Experts stressed the need for network segmentation and continuous monitoring to detect anomalies early. The campaign escalated since the start of US-Israeli hostilities with Iran.

Critical infrastructure defenders cannot afford complacency against foreign adversaries.

Tech Industry Records Nearly 80,000 Layoffs in First Quarter of 2026

  • Sector reportedly saw 78,557 job cuts in Q1.
  • Nearly half of positions allegedly eliminated due to AI.
  • Automation continued to reshape workforce needs rapidly.

USA, Apr 08 (TNGB) – Employment data released this week showed the technology sector experienced significant workforce reductions during the opening months of 2026. Analysts tallied 78,557 layoffs across major firms with 47.9 percent attributed directly to artificial intelligence integration and process automation. Companies cited efficiency gains and cost pressures as primary drivers behind the decisions. The trend followed similar patterns from prior quarters yet accelerated in certain subsectors. Affected professionals received severance packages while many firms simultaneously expanded hiring in specialized AI roles. The United States accounted for over 76 percent of the cuts.

AI adoption continues to reshape the technology employment landscape.

LinkedIn Browser Extension Scanning Sparks Controversy and Lawsuits

  • Platform allegedly scanned user browser extensions via JavaScript.
  • Two class-action suits filed over privacy violations.
  • Company claimed actions prevented data scraping.

USA, Apr 08 (TNGB) – LinkedIn has come under legal and public scrutiny after reports surfaced about its practice of examining installed browser extensions on user devices. Plaintiffs in two California class-action lawsuits allege the scanning violated privacy protections and amounted to unauthorized surveillance. LinkedIn defended the technique as necessary to combat automated scraping and maintain platform integrity. The cases highlight ongoing tensions between user data protection and corporate security measures. Legal proceedings remain in early stages with potential implications for similar practices across the industry.

Privacy expectations must align with platform security practices.

WireGuard VPN Developer Loses Ability to Ship Windows Updates

  • Microsoft allegedly locked developer account without explanation.
  • Jason Donenfeld cannot sign or publish driver updates.
  • Similar issues reportedly affected other open-source projects.

USA, Apr 08 (TNGB) – The lead developer of the popular WireGuard VPN project has been unable to release Windows updates following an account lockout by Microsoft. Jason Donenfeld reported the sudden restriction prevented code signing required for driver distribution through official channels. The issue echoes earlier problems faced by maintainers of projects such as VeraCrypt. Microsoft has not publicly detailed the reasons behind the decision despite repeated inquiries. Open-source communities expressed concern over reliance on single-vendor infrastructure for security tool distribution.

Account access stability directly impacts essential security software availability.

Trump Administration Seeks Medical Records of Federal Workers

  • Office of Personnel Management requested detailed health data.
  • Proposal allegedly covered claims and pharmacy records.
  • Federal employees and retirees would be affected.

WASHINGTON D.C., Apr 08 (TNGB) – President Donald J. Trump’s administration proposed collecting extensive medical and pharmacy claims data from insurers covering current and former federal workers. Officials cited administrative efficiency and program oversight as primary goals for the expanded data access. Privacy advocates raised immediate questions about the scope and safeguards surrounding the collection effort. The Office of Personnel Management outlined the plan in recent notices with implementation timelines still under review. Affected individuals received limited details on how the information would be stored or used long term. The proposal covers more than eight million beneficiaries including retirees and families.

Data collection policies require clear boundaries to protect worker privacy.

Hack for Hire Group Targets Android Devices and iCloud Backups

  • Group allegedly deployed spyware against journalists and activists.
  • Android malware and iCloud phishing formed core tactics.
  • Targets concentrated in Middle East and North Africa region.

USA, Apr 08 (TNGB) – Cybersecurity firms identified a commercial surveillance operation that combined custom Android spyware with phishing attacks aimed at iCloud accounts. The hack-for-hire actors focused on high-profile individuals including journalists and political figures in the Middle East and North Africa. Tools such as ProSpy enabled device compromise once installed through social engineering. Backups stored in the cloud provided additional data troves when primary access failed. Researchers linked the activity to a single group offering services to paying clients.

Commercial spyware erodes trust in personal device security.

Internal Tensions Surface at OpenAI Amid Strategic Shifts

  • Company reportedly navigated executive departures and project changes.
  • Pentagon contracts sparked internal debates and protests.
  • Competition intensified across artificial intelligence sector.

SAN FRANCISCO, Apr 08 (TNGB) – OpenAI has encountered a series of internal challenges as it balances rapid growth with external pressures and strategic decisions. Recent executive exits and disagreements over military-related contracts have fueled perceptions of discord within the organization. Public protests outside headquarters highlighted concerns about AI applications in surveillance and autonomous systems. Meanwhile intensified competition from rivals forced adjustments to product roadmaps and partnerships. Leadership continued to emphasize safety frameworks while advancing commercial initiatives.

Corporate culture directly influences innovation pace in competitive fields.

Bain Capital Data Center Unit Evicts Tenant Suspected of Nvidia GPU Smuggling

  • Megaspeed reportedly spent billions on AI processors.
  • Tenant allegedly routed GPUs to China in violation of rules.
  • Eviction followed US government investigation.

USA, Apr 08 (TNGB) – Bridge Data Centres operated by Bain Capital removed a major tenant suspected of illicitly exporting high-end graphics processors. Megaspeed had acquired roughly two billion dollars worth of Nvidia GPUs for distribution to restricted markets including China. The action followed heightened scrutiny from US authorities enforcing export controls on advanced semiconductors. Data center operators cited compliance obligations as the basis for termination. Industry observers noted the case underscores risks in the AI hardware supply chain.

Export enforcement maintains technological advantages in strategic competition.

Scammers Target Job Seekers to Harvest Account Logins

  • Fraudsters created fake job portals and forms.
  • Google and Facebook credentials reportedly stolen via phishing kits.
  • Victims directed to complete tasks before payment demands.

USA, Apr 08 (TNGB) – Cybercriminals have intensified operations that impersonate legitimate employers to extract login credentials from desperate job applicants. Scammers built realistic portals mimicking payroll platforms and used search ads to lure targets into entering Google or Facebook details. Once harvested the accounts enabled further fraud including unauthorized fund transfers. Researchers documented the surge in these schemes which exploited economic uncertainty. Victims often realized the deception only after personal data appeared in unauthorized locations.

Job seekers should verify offers through official company channels exclusively.