A previously unknown threat actor, tracked as MontysThree, targets Russian industrial organizations. The group used a toolset dubbed MT3 in highly targeted attacks with cyber espionage purposes. The malware allows operators to search for specific Microsoft Office and Adobe Acrobat documents and steal them, capture screenshots, and collect information on the compromised machine. Researchers at Kaspersky will disclose technical details of the attacks on Thursday at the second SAS@Home event. The presence of many artifacts in the code of the malware suggests that its developers are Russian-speaking coders.”]
Source: https://securityaffairs.co/wordpress/109242/apt/montysthree-threat-actors.html