Security firm Proofpoint on Thursday said it uncovered an “advanced phishing campaign” that specifically targeted U.S. utility companies by impersonating an engineering licensing board. The firm said emails sent between July 19 and July 25 went to three utilities, which it declined to name. Messages purporting to be from the U.S. National Council of Examiners for Engineering and Surveying contained a malicious attachment that utilized macros to install and run malware named “LookBack.” The attempts highlight the “continuing global risk from nation-state actors,” according to Proopoint. In June, the United States’ chief energy regulator warned the electric grid is “increasingly under attack by foreign adversaries.”