A hacker suspected to be backed by a nation state is attacking embassies of former soviet states with a malware tool.
The malware tool has infiltrated more than 15 countries, including France, Belgium and Ukraine.
According to Symantec researchers, suspected nation state attackers sent previously known but capable malware to staff at the embassies, to establish a foothold for reconnaissance in a bid to locate valuable human targets.
The infection began through various websites likely to be visited by embassy staff - a tactic known as watering hole attacks. At least 84 websites have been affected.
Researchers said: "In one instance, the malware delivered was disguised as a Shockwave installer bundle.
"Wipbot was then used to gather further information about the infected computer. If the attackers deemed the victim of interest, it appears likely that a second back door Trojan.Turla with far greater capabilities was downloaded onto the victim's computer."
Return to internet news headlines
View Internet News Archive