However the exact motives and purpose of the campaign – much less who might be behind the cyber-assaults – remains unclear.
But websense says
Websense Security Labs™ researchers have discovered a widespread cybercrime campaign utilizing the Mevade malware that appears to be originating from Russia and Ukraine and primarily targeting the business services, government, manufacturing, and transportation sectors in the US, UK, Canada, and India...The heavy use of attack infrastructure (C2 servers) located in Ukraine and Russia and Mevade malware links this group to a potentially well-financed cyber-crime gang operating out of Kharkov, Ukraine and Russia
Though what mobsters would do with transportation industries is unclear. Though they could use the packaged proxy to sniff out Good Documents.
Luckly, Windows only.