A sophisticated espionage APT that was active for at least eight years before receding into the shadows has been uncovered. Researchers at Kaspersky said the group dubbed DarkUniverse used spearphishing to spread its malware in a highly-targeted campaign. Each victim received a carefully crafted letter tailored to their unique circumstances, with a prompt to open an attached malicious Microsoft Office document. The group may have simply retooled its operations in 2017 but that may have just been a result of a recent NSA leak.
Source: https://threatpost.com/darkuniverse-apt-targeted-spy-attacks/149927/