Early this spring, Russian government-linked hackers used three popular internet of things devices with weak security to access several Microsoft customers’ networks, then tried infiltrating more privileged accounts, researchers announced Monday.
The company’s Threat Intelligence center said the Strontium group, also known as APT28 and Fancy Bear, leveraged weak security in an office printer, video decoders and a voice over IP (VOIP) phone to access wider systems. The attacks occurred as recently as April, Microsoft said, adding that hackers used insecure IoT devices as a means to attempt to break into valuable accounts where they would have found more sensitive data.
Microsoft disclosed neither the affected devices, nor which of its customers were impacted.