Protecting Your Digital Door: Router Threats, Aldi Scams, Bluetooth 6, and Google AI Updates

Show Notes

Greg Doig is the insightful host of Tech Brewed, a show dedicated to exploring the cutting edge of technology while shining a light on the risks that come with it. With a knack for balancing stories of technological empowerment against modern threats, Greg keeps listeners informed on everything from FBI warnings about home routers and the evolution of Bluetooth to the latest announcements at tech events like Google I/O 2026. His reporting also uncovers real-world dangers, such as emerging scams on social media. Always looking ahead, Greg Doig’s engaging storytelling ensures audiences are prepared for the future of tech—and the challenges it brings.

Tech Brewed Free Skool Community
Hello, I’m Greg Doig – a technology enthusiast, problem solver, and your digital ally in an increasi

Disclaimer: This post contains affiliate links. If you make a purchase, I may receive a commission at no extra cost to you.

Subscribe to the weekly tech newsletter at https://gregdoig.com

Transcript

0:00

Welcome back to Tech Brood. I'm your host, Greg Doig. And we're looking at a fine line between the tech that empowers us and the threats that target us. In this episode, we've got a packed show from a massive FBI warning about the router in your living room to the next generation of Bluetooth and the highlights from Google I O 2026. We're also exposing a nasty grocery scam that's hitting social media. So if you're ready, let's go. We recently Talked about the FCC's decision to ban foreign made routers from being imported into the United States. That was a forward looking story. A policy move about which routers you'll be allowed to buy in the future. Today's episode is the other side of that coin. Today we're talking about the routers people already own and a joint warning from the FBI, the NSA, and the Department of Justice that frankly should be on every news channel in the country. In April, those three agencies issued a coordinated red alert. Russian military intelligence, specifically a GRU unit you may have heard of in the past called APT 28, also known as fancy Bear, has been hijacking home and small office routers across at least 23 US states. At the peak of the campaign late last year, more than 18,000 compromised routers across 120 countries were quietly phoning home to Russians servers. And here's how serious this is. The Department of Justice went to a federal court and got authorization to remotely push fixes onto compromised routers inside the United States. The government had to ask a judge for permission to clean up your hardware because the threat was that significant. And even after that operation, the DOJ said publicly, quote, the threat is not fully neutralized. So how does this attack actually work? Let me break it down in plain English. Your router has a kind of address book. When you type a website name into your browser, such as chase.com, gmail.com or whatever it is, the router looks up the real address of that website and takes you there. That's its job. What these hackers did was rewrite the address book. So you type chase.com and you go to a page that looks exactly like Chase's webpage. Same logo, same color, same login fields, but it's actually a copy hosted by the attackers. You type in your password, they capture it. You type in your two factor code, they capture that too, in real time and use it to log into the real Chase before the code expires. You don't see a Warning, you don't see a weird URL, at least not one most people would notice the attack happens before your browser even reaches the actual website. Now you might be thinking, okay, which routers? The two models that have been hit hardest are the TP Link, WR841N and Ubiquiti Edge routers. These are not obscure devices. The TP Link in particular is one of the best selling budget routers in the world. It's in millions of homes and coffee shops and small offices. But honestly, this isn't really about two specific brands. It's about a category or older. Routers that don't get firmware updates anymore. Routers that still have their factory default password. Routers that have remote management turned on because somebody plugged them in and walked away. Here's what the FBI is telling you to do, and I want you to pay close attention to Step one because it's the part most people get wrong. Step one A reboot is not enough. The FBI was explicit about this. Unplugging and replugging your router will not remove this malware. You need a full factory reset. On most routers. That means holding the reset button on the back of the device for 10 to 30 seconds. Keep holding until the lights flash. That wipes the firmware back to its original state. Step 2 Update the firmware Once you've reset the router, log into its admin page either through a web browser or the manufacturer's app, and go check for firmware updates. Install whatever the manufacturer offers. If your router is so old that the manufacturer doesn't make updates for it anymore, that's your sign. Replace it. Next step Change the admin password. And I want to be specific here. This is not your WI fi password. This is the password you use to log into the router settings. A lot of the routers ship with the admin login set to Admin and Password or admin and admin. If you've never changed yours, please do it today. Make it long, make it unique, and store it in a password manager. Another step Turn off remote management. Look in your router settings for anything labeled remote access, remote administration, or WAN management. That's WAN and switch it off. Unless you have a very specific reason to log into your router from outside your home, you don't need that feature. And leaving it on is one of the biggest doors attackers walk through and another step to follow. Replace end of life hardware. If your router is more than five or six years old or the manufacturer has stopped issuing security updates. It's time. I know nobody wants to spend$150 or more on a new router, but the cost of a drained bank account is a lot higher. So this is one of those situations where doing nothing is genuinely a choice. And it's a bad one. Your router is the front door to every device in your house. Your phone, your laptop, your kids, tablets, your smart tv, every camera, every thermostat. If they're smart devices, the FBI is standing on your porch telling you the lock has been picked. It should only take 20 minutes or less to reset, update, change the password, turn off remote access. That's it. That's the whole assignment. If you found this helpful, share it with somebody who isn't going to hear it from anywhere else. If you a parent, a neighbor, a friend whose router has been blinking in the corner since 2019. So, as always, when on the Internet and using devices connected to it, hey, let's be careful. Let's just get right into it. A sophisticated Facebook scam is circulating right now, impersonating discount supermarket Aldi to steal victims payment information. And it's worth knowing exactly how it works. Welcome back. I'm your host Greg Doig. The attack starts with a post from a fake or compromised account. Folks see tone personal story Someone's husband loves steak. There's a secret deal for people over 40 a $10 meat box. Classic social engineering. Manufactured trust Fake exclusivity, artificial urgency. The link is dropped in the comments, not the post itself. A deliberate tactic to dodge automated platform scanning. Here's where it gets technical. That link routes through a URL shortener, then to a device fingerprinting script which filters out security researchers and bots before finally landing victims on a convincing Aldi clone site. The domain's wrong, but most people don't check the page applies pressure immediately. One spot left, two minutes to complete. A short survey builds sunk cost momentum. Then victims win a prize and are forwarded to a real payload, a payment form requesting full name, address, phone number and card details dressed up as a small delivery fee. The site even auto submits if it detects browser saved autofill data. No final click required. Similar campaigns have been flagged, targeting Woolworths customers in Australia and South Africa. This is a templated multinational operation. So Here are your three things to remember. 1 Legitimate retailers don't hide deals in Facebook comments. 2. Always verify the domain before entering any personal data and three if you've already submitted your details, call your bank immediately and request a card freeze Bluetooth 6.0 the next wireless Leap welcome back tech enthusiasts. Greg Doig here with a fresh tech tip for you. If you've ever hunted for lost earpods under the couch or dealt with laggy Bluetooth audio During a game, Bluetooth 6 is about to make your life noticeably better. The new standard is rolling out now and it brings some genuinely useful upgrades. First up, the Star Feature Channel Sounding. This lets devices measure distance and direction with up to about 10 centimeter accuracy. Think precise Find my tracking for small items like earbuds or keys. No more guessing, your phone could literally point you right to them. It also boosts security for things like digital car keys, making relay attacks much harder. This is huge for proximity based unlocking and asset tracking. And on the audio side, Bluetooth 6 improves the Isochronis adaptation layer, which is abbreviated ISOAL. It breaks up data packets smarter, reduces latency, and makes transmission more reliable. Gamers and movie watchers will notice tighter lip sync and less annoying delays combined with better multi device switching, your headphones can seamlessly hop between your phone, laptop and TV without manual fiddling. Other wins include smarter saving power, lower overall energy use for longer battery life, and stronger interference resistance in crowded environments. It builds features like AuraCast for public audio broadcasting too. The bottom line? Bluetooth 6 won't revolutionize your world overnight, but it quietly fixes pain points we've lived with for years. More precise, lower latency and more efficient, it's the kind of upgrade that just works better in the background. Keep an eye on new gear labels and when upgrading, Bluetooth 6 support is worth considering. So stay connected smarter and get devices with Bluetooth 6 when available. Google just dropped some massive updates at IO 2026 and it's clear they're going all in on making AI actually do things for you, not just chat with you. Welcome back tech enthusiasts. Gemini Omni this is the big one. It's a multimodal beast that can take basically any input and turn it into something new. It's starting with video, showing off some seriously impressive world understanding and editing skills. Next up, Gemini 3.5 Flash this is the speedster of the new family. It's it's designed to be fast and action oriented, meaning it's built to execute tasks rather than just process info. And Google is moving away from simple chatbots and toward agents that can actually get stuff done. Google Anti Gravity this is their new platform that lets pretty much anyone build their own AI agents. You don't need to be a hardcore dev to start building tools that take action and you're going to see these agents popping up in everything. Think smarter, Search, a daily brief in the Gemini app, and a universal cart that makes shopping way more intelligent. The vibe this year is definitely less taking more doing. Google is trying to turn Gemini into a proactive assistant that lives across your phone, your glasses, and even YouTube. Well, that's it for this episode. We went from restarting your router to the new world of Gemini Omni and the message is clear. Stay updated or stay vulnerable. Your choice. If you found today's episode helpful, do us a favor and hit the share button in your podcast app. Wherever you listen to this and send it to the one person you know who is still using admin as their router password, you just might save their bank account and more. And wherever you're at out there on that Internet, as always, hey, let's be careful out there and we'll catch you in the next episode.