A newly discovered APT group, dubbed Calypso after a custom malware RAT that it uses, has been targeting state institutions in six different countries since 2016. Government organizations in India, Brazil, Kazakhstan, Russia and Thailand have all been successfully infiltrated at some point. The group injects a backdoor RAT program that it says it uses to execute commands and upload utilities and malware. The goal is to reach endpoints on a targeted organization s LAN and steal confidential data. The APT also uses a variety of legitimate administrative tools, which helps it stay under the radar.
Source: https://threatpost.com/calypso-apt-target-governments/149773/