Apr 07, 2026highidentityexploited in the wild

Russia Hacked Routers to Steal Microsoft Office Tokens

Russian military intelligence hackers exploited known vulnerabilities in older routers to silently harvest Microsoft Office authentication tokens across more than 18,000 networks. The attack required no malware deployment, making it difficult to detect through traditional security tools. Developers should care because this demonstrates how infrastructure-level compromises can bypass application-layer security, putting any organization using Microsoft Office at risk of credential theft without any user interaction.

what's affectedRussia Hacked Routers to Steal Microsoft Office Tokens

mitigation statusMonitoring updates

first reportedApr 07, 2026

social pulse

mentions (24h)997

velocitytrend up

mentions delta+16% vs yesterday

platform splitX 73% · Reddit 26% · GitHub 8%

keywords

identityvulnerabilitymitigation

x analyticsheat 0

authors 0verified 0%

likes0

retweets0

replies0

quotes0

summaryConversation is accelerating with active-response chatter and exploit validation.

sources

https://krebsonsecurity.com/2026/04/russia-hacked-routers-to-steal-microsoft-office-tokens/

Curated Apr 07, 2026 by the ahackaday team./Sources verified./Brief grounded in 1 source.

Grace Your AI security internreadyGrace is ready

Grounded in this brief only — Russia Hacked Routers to Steal Microsoft Office Tokens. Press ⌘K any time.

You're answering aschange anytime

Pick a playor type your own ↓

Tone

Pick a play above, or type your question

Generate an answer and Grace will return a grounded response for this incident.

scanning advisory feeds…