Researchers have uncovered another in an ongoing series of targeted attacks against government agencies and activists. The attack compromised a pair of Nepalese government web sites with code that exploits a Java vulnerability to install a backdoor on vistors machines. The same Java vulnerability was used in attacks earlier this year on Amnesty International and the Institute for National Security Studies in Israel. Backdoor called Zegost is a known remote-administration tool that s been used in other targeted attacks, specifically in Asia.
Source: https://threatpost.com/nepalese-government-sites-hacked-serving-zegost-malware-080812/76893/