At least 70 organizations across multiple industries have been hit in a sophisticated cyber-surveillance campaign conducted by threat actors with potential nation state connections. Majority of the victim organizations are Ukraine based, though a handful of targets have also been spotted in Russia, Austria and Saudi Arabia. CyberX uncovered the operation after discovering malware used in the attacks in the wild and reverse engineering it. The focus of BugDrop appears to be to capture a range of sensitive information from targets via audio recordings of conversations and via documents, screenshots and passwords from victim system.”]