LOWData BreachACTIVE
Krebs on Security: Russia Hacked Routers to Steal Microsoft Office Tokens
April 7, 2026
Incident Summary
Russian state-backed hackers exploited known vulnerabilities in routers to harvest Microsoft Office authentication tokens from users. The stolen tokens could enable unauthorized access to affected Microsoft Office accounts without needing passwords. The incident implicates network edge security as an avenue for compromising cloud account sessions. Limited public details are available on the scope of impacted users or any remediation outcomes.
Incident Details
- Type
- Data Breach
- Severity
- LOW
- Status
- ACTIVE
- Date Occurred
- April 7, 2026
#krebs#breach#investigative