Diplomats and military personnel in India have been victimized in targeted espionage attacks that use a number of means of infection including phishing and watering hole sites. The state-sponsored attacks targeted Indian diplomats operating in embassies in Saudi Arabia and Kazakhstan. The sustained campaign s goal, Proofpoint said, was designed to allow attackers to drop a remote access Trojan it calls MSIL/Crimson. The Trojan had a variety of data exfiltration functions, including access to laptop cameras, screen capture functionality and keylogging.
Source: https://threatpost.com/espionage-malware-watering-hole-attacks-target-diplomats/116600/