Researchers uncover an innocent software update that’s really a cover for espionage.

A state-sponsored hacking operation is targeting diplomats, using a new attack that bundles malware with a legitimate software update.

Uncovered by researchers at ESET, the attacks are targeting embassies and consulates in eastern European post-Soviet states and have been attributed to Turla, a well-known advanced persistent threat group.

The hacking operation has a history of targeting government and diplomatic bodies using watering-hole attacks and spear-phishing campaigns, which often involve the use of false Flash downloads, to infiltrate victim’s systems. Researchers note that some private companies have been infected, but that they’re not the main targets of the campaign.

Read full news article on ZDNet