A Russian-backed hacking group was observed by Microsoft security researchers while compromising popular IoT devices to gain a foothold within several corporate networks. The attacks were attributed to the APT group STRONTIUM (also known as Fancy Bear or APT28), previously connected to a multitude of cyber-espionage campaigns targeting governments around the world. Microsoft said on July 18 that it alerted around 10,000 of its customers in the past year of being either targeted or compromised by various nation-state sponsored hacking groups.
Source: https://www.bleepingcomputer.com/news/security/russian-apt-abuses-iot-devices-to-infiltrate-corporate-targets/