17 US utility firms targeted by mysterious state-sponsored group

A mysterious state-sponsored hacking group has targeted at least 17 US utility firms with phishing emails for a five-month period between April 5 and August 29, Proofpoint reported today.

The purpose of these attacks was to infect employees at US utility firms with LookBack, a remote access trojan with an extensive set of features.

While no formal attribution has been made, the attacks are believed to be the work of Chinese hackers, and more precisely, the work of a group tracked as APT10, based on some pieces of reused code.

Read more…
Source: ZDNet