BrianKrebs1d ago

New, from me: Hackers linked to Russia’s military intelligence units are using known flaws in older Internet routers to mass harvest authentication tokens from Microsoft Office users, security experts warned today. The spying campaign allowed state-backed Russian hackers to quietly siphon authentication tokens from users on more than 18,000 networks without deploying any malicious software or code.

https://krebsonsecurity.com/2026/04/russia-hacked-routers-to-steal-microsoft-office-tokens/

Show threadPatrick Cotter19h ago
@briankrebs Brian, your Forest Blizzard report is my reality. Case SIR23252176: I’m an NY small biz owner with 10yrs of data held by a thief. MS admits the theft but leaves a 'bot' in charge. Between token-theft & today's #BlueHammer zero-day, 'you own nothing' is a professional liability. Manually rescuing 3TB of data now to keep my clients safe. #Microsoft #SmallBusiness #Infosec
Show threadBrianKrebs18h ago
@Patrick_Cotter Wow, I thought my day was bad. Sorry to hear that dude.
Show threadPatrick Cotter18h ago
@briankrebs Appreciate that, Brian. It’s been a surreal day of building beehives(literally) to stay sane while manually rescuing 3TB of data at 48MB/s. If a pro like you thinks it’s a mess, maybe MS will finally listen to the human in the loop. Certified mail goes to their legal team tomorrow. Case SIR23252176 for anyone at Redmond actually reading this. Though doubts remain high.
Show threadAndreas K

@Patrick_Cotter
Why should MS listen? It's peachy for them. They have a captive customer audience, their performance is literally irrelevant for sales.

The moment people like you start jumping ship en masse they might wake up, but almost certainly not with better products, probably with better fences.
@briankrebs

11:21amFedilab
Show threadRobert [KJ5ELX] 4h ago

@yacc143 @Patrick_Cotter @briankrebs

You have to be a fortune 100 to receive priority "oh shit our bad" service from Microsoft.