An espionage ring is targeting key infrastructure and government services with malware-infected files sent as LinkedIn message attachments, SC Magazine reported. The fraudulent LinkedIn messages from the group APT34 supposedly come from a member of Cambridge University offering business opportunities. The targeted victim is told the attachment is an application form to fill out and send back. Once the target opens it, though, a new strain of malware called TONEDEAF downloads onto the victim’s system and creates a “backdoor” – a secret portal into the system for the hacker to use remotely.
