Advertisement
TP-Link Archer AX21 RCE via CVE-2023-1389 — Mitigation Guide
Hackers continue targeting discontinued TP-Link Archer AX21 routers with CVE-2023-1389, though many exploitation attempts currently fail to execute payloads.
APT28 Exploits MikroTik & TP-Link Routers in DNS Hijacking
Russian state-linked APT28 (Forest Blizzard) is compromising insecure SOHO routers globally, employing DNS hijacking for cyber espionage since May 2025.
APT28 FrostArmada DNS Hijack Campaign Steals Microsoft 365 Logins
Authorities disrupt APT28's FrostArmada campaign, which used DNS hijacking of MikroTik and TP-Link routers to steal Microsoft 365 account credentials.
CVE-2024-5035: TP-Link Archer C5400X RCE Vulnerability Patch
TP-Link fixes high-severity flaws including CVE-2024-5035 and CVE-2024-3922, preventing remote code execution and authentication bypass on gaming routers.
Archer NX200 and NX510v Auth Bypass: CVE-2024-5035 Patch Guidance
TP-Link patches critical auth bypass CVE-2024-5035 and command injection in Archer NX routers, preventing unauthorized firmware uploads and remote code execution.