Hackers modified a Pakistani government website where citizens can request passports to spy on its visitors, according to researchers at Trustwave. The infection is still active.
The big picture: The code added to the website, known as Scanbox, performs reconnaissance on visitors and has been associated with espionage attacks in the past. Other actors use it too, and Trustwave is not attributing the attack to any government or criminal groups.