VERY IMPORTANT

Cisco Talos recently identified a series of documents that they believe are part of a coordinated series of cyber attacks that they are calling the "Frankenstein" campaign. They assess that the attackers carried out these operations between January and April 2019 in an effort to install malware on users' machines via malicious documents. They assess that this activity was hyper-targeted given that there was a low volume of these documents in various malware repositories. Frankenstein — the name refers to the actors' ability to piece together several unrelated components — leveraged four different open-source techniques to build the tools used during the campaign.