LOWData BreachACTIVE
Krebs on Security: Russia Hacked Routers to Steal Microsoft Office Tokens
April 7, 2026
Incident Summary
Security researchers said Russian military-linked hackers exploited vulnerabilities in older internet routers to steal Microsoft Office authentication tokens. The incident involves compromise of network edge devices rather than a direct breach of Microsoft Copilot itself. It matters because stolen tokens can enable unauthorized access to Microsoft Office accounts without needing passwords. Users and organizations relying on the affected routers are potentially impacted. Limited public details are available about the scale, specific router models, or remediation status.
Incident Details
- Type
- Data Breach
- Severity
- LOW
- Status
- ACTIVE
- Date Occurred
- April 7, 2026
#krebs#breach#investigative