· 1 min read

Breaking: UK Warns of Chinese Hackers Using Hijacked Consumer Device Botnets

NCSC-UK warns China-linked hackers are using botnets of hijacked home routers and smart devices to hide malicious activity and evade detection.

Breaking News — April 23, 2026

The UK's National Cyber Security Centre (NCSC-UK) and international partners have issued a warning that China-nexus hackers are increasingly using large-scale proxy networks of hijacked consumer devices to evade detection and disguise malicious activity.

Key Findings

  • Threat actors: China-nexus hackers
  • Method: Large-scale proxy networks of hijacked consumer devices
  • Purpose: Evasion and obfuscation of malicious activity
  • Warning issued by: NCSC-UK and international partners

Consumer Device Targets

The botnets include home routers, smart devices, and other IoT equipment — devices often poorly secured and rarely patched. This gives attackers a massive, distributed infrastructure that's difficult to attribute and takedown.

This tactic represents a shift toward using consumer infrastructure as a force multiplier for state-sponsored operations.

Source: BleepingComputer / NCSC-UK

More from the Blog

Breaking: New GopherWhisper APT Abuses Outlook, Slack, Discord for Espionage

New state-backed APT GopherWhisper discovered using Go-based toolkit and legitimate platforms (Outlook, Slack, Discord) to target government entities.

Read more

Breaking: CISA Orders Federal Agencies to Patch Microsoft Defender Zero-Day (BlueHammer)

CISA issues emergency directive for federal agencies to patch Microsoft Defender zero-day flaw BlueHammer, actively exploited in the wild.

Read more