At the end of July, researchers detected malicious emails being sent to three U.S utilities companies disguised as emails from the National Council of Examiners for Engineering and Surveying. The spear-phishing emails contained a remote access trojan (RAT) dubbed LookBack. The researchers who analyzed the attack believe the campaign is state-sponsored, based on historical campaigns, the unique delivery system, and the malware.
Continue Reading on Threat Post
Ukrainian Secret Service is investigating the incident and examining if attackers might have used the mining rigs as a pivot point to enter the nuclear power plant's network and retrieve information from its systems. This incident isn't the first time that state employees have abused their access to large sources of electricity or computing power to mine cryptocurrency.
Continue Reading on ZDNet