Cyber-espionage group APT28 is trying to exploit a Flash zero-day vulnerability that Adobe patched earlier this week. The group is believed to be operating under the supervision of the Russian state. US cyber-security firm Proofpoint said it’s currently trying to take down C&C servers associated with the attack framework used in this recent campaign. The attacks were easy to spot because they employed the same old old malware framework used for spear-phishing emails sent via Office files sent via email.
Source: https://www.bleepingcomputer.com/news/security/russian-cyberspies-are-rushing-to-exploit-recent-flash-0-day-before-it-goes-cold/