Attackers compromised an update server and replaced a popular BitTorrent client called MediaGet with a signed backdoored binary to spread a malicious cryptocurrency miner.
The attack could successfully taget over 400,000 PCs mostly in Russia, Turkey, and Ukraine.
The attackers seem to have been able to compromise the publishing infrastructure, as well as the signing key of the package.