Security News > 2020 > March > Russia-backed crew's latest malware has discerning taste – when screening visitors to poisoned watering holes
Data from ESET telemetry suggests that, for this campaign, only a very limited number of visitors were considered interesting by Turla's operators.
The two compromised government websites and another pair of poisoned civilian websites have been active since early 2019.
"Data from ESET telemetry suggests that, for this campaign, only a very limited number of visitors were considered interesting by Turla's operators."
While a small, localised attack against an Eastern European government isn't particularly earth-shattering news, given Turla's history and reputation, it could be a sign of larger operations to come.
The Turla crew, believed to be connected to Russian military and intelligence operations, has been active for more than a decade, carrying out targeted malware attacks and network intrusions.
News URL
https://go.theregister.co.uk/feed/www.theregister.co.uk/2020/03/12/eset_spots_turla_hackers/