Symantec hasn't tracked down those behind Dragonfly, but it has plenty of evidence that they're professionals. Most of the attacks occur on weekdays between 9AM and 6PM Eastern European time, and they're primarily hitting Western European targets. They "think strategically," too. They first focused on aviation and defense agencies around 2011, and switched to power-related companies in early 2013; also, the suppliers under attack are smaller and less secure than the energy providers they're serving. If there's any consolation, it's that companies can shut down individual attacks, and that Symantec has already let affected companies and security response centers know what's happening. Let's just hope that the revelations get firms to tighten their security before there's some major damage.

[Image credit: Bjorn Kindler/Getty]