A group known as APT28 and Pawn Storm is using an exploit for a vulnerability in Java that hasn’t been patched by Oracle. The exploit was recently observed by researchers from antivirus vendor Trend Micro. The group has been targeting NATO members and governments in Europe, Asia and the Middle East. It typically sends rogue emails to its victims with malicious links to supposed articles about geopolitical events. The newly found exploit affects the latest version of the Java runtime environment, Java 8 Update 45, which was released in April.”]