The Sofacy APT group has been active since 2008, targeting mostly military and government entities in NATO countries. The experts speculate that the Sofacy has increased its operations tenfold by targeting high-profile entities by using a new set of hacking tools and zero-day exploits. In the last months, the researchers have uncovered a series of attacks, relying on a. series of. attacks relying on zero-days in Microsoft Office, Oracle Sun Java, Adobe Flash Player and Windows itself. Researchers spotted a rare modification of the AZZY backdoor used by the threat actors for reconnaissance purposes.”]
Source: http://securityaffairs.co/wordpress/42562/cyber-crime/sofacy-apt-operations-tenfold.html