Google’s Threat Analysis Group (TAG) has spotted a disturbing similarity in attack tactics used by commercial spyware vendors and Russia-linked attack gangs. The TAG team spotted a watering hole attack – a nasty tactic that seeks crooks seed a legitimate website with malicious code – that it’s attributed to the Russia-sponsored APT29 group, which attacked Mongolia’s Cabinet server and Ministry of Foreign Affairs.

Source: The Register