> TritonInfoSec News
Home / Apr 08, 2026 / Story
0
#2 Krebs on Security threat-intel April 07, 2026 at 17:02 UTC

Russia Hacked Routers to Steal Microsoft Office Tokens

By BrianKrebs

AI Summary

Russian military intelligence unit APT28 (Forest Blizzard) exploited vulnerabilities in MikroTik and TP-Link routers to hijack DNS traffic and harvest Microsoft Office authentication tokens from over 18,000 networks. The campaign allowed state-backed hackers to steal credentials without deploying malware by redirecting traffic through attacker-controlled infrastructure.

Read full article → https://krebsonsecurity.com/2026/04/russia-hacked-…

Relevance score: 94.0/100

# More from April 08

  1. 1
    Iran-Linked Hackers Disrupt U.S. Critical Infrastructure by Targeting Internet-Exposed PLCs The Hacker News
  2. 3
    Feds quash widespread Russia-backed espionage network spanning 18,000 devices CyberScoop
  3. 4
    FBI: Americans lost a record $21 billion to cybercrime last year BleepingComputer
  4. 5
    Max severity Flowise RCE vulnerability now exploited in attacks BleepingComputer
  5. 6
    Docker CVE-2026-34040 Lets Attackers Bypass Authorization and Gain Host Access The Hacker News
  6. 7
    Hackers exploit critical flaw in Ninja Forms WordPress plugin BleepingComputer
  7. 8
    Storm-1175 Deploys Medusa Ransomware at 'High Velocity' Dark Reading
  8. 9
    Snowflake customers hit in data theft attacks after SaaS integrator breach BleepingComputer
  9. 10
    Fortinet Issues Emergency Patch for FortiClient Zero-Day Dark Reading