June 3, 2022
1 min read

State-backed Chinese hackers exploiting new MS Office bug

Chinese hackers have a long history of using software security flaws to target Tibetans….reports Asian Lite News

China government-backed hackers, previously observed targeting the Tibetan government-in-exile based in Dharamshala, are actively exploiting a bug in Microsoft Office to steal and delete users’ data.

According to cyber-security firm Proofpoint, the newly-discovered vulnerability titled ‘Follina’ in Microsoft Office is being exploited by advanced persistent threat (APT) group ‘TA413’ linked to the Chinese government.

“TA413 CN APT spotted ITW exploiting the #Follina #0Day using URLs to deliver Zip Archives which contain Word Documents that use the technique. Campaigns impersonate the “Women Empowerments Desk” of the Central Tibetan Administration,” Proofpoint said in a tweet.

Chinese hackers have a long history of using software security flaws to target Tibetans.

Microsoft has acknowledged the vulnerability, officially titled CVE-2022-30190 regarding the Microsoft Support Diagnostic Tool (MSDT) in Windows vulnerability, but was yet to issue a security patch.

“An attacker who successfully exploits this vulnerability can run arbitrary code with the privileges of the calling application. The attacker can then install programmes, view, change, or delete data, or create new accounts in the context allowed by the user’s rights,” Microsoft said in an update.

In a blog post, cyber-security researcher Kevin Beaumont also detailed the new vulnerability.

According to the Verge, current analysis suggests that ‘Follina’ affects Microsoft Office 2013, 2016, 2019, 2021, Office ProPlus, and Office 365.

The US Cybersecurity and Infrastructure Security Agency has also asked system administrators to implement Microsoft’s guidance for mitigating exploitation.

“Customers with Microsoft Defender Antivirus should turn-on cloud-delivered protection and automatic sample submission. These capabilities use artificial intelligence and machine learning to quickly identify and stop new and unknown threats,” said Microsoft.

ALSO READ: Canada says China harassed its aircraft on N. Korea mission

Previous Story

Panjshir sees fierce fighting between NRF and Taliban

Next Story

Mitigation steps suggested on Ken-Betwa project’s impact on wildlife

Latest from -Top News

Pakistan FM Due in Bangladesh

During his visit Dar will hold discussions with the Foreign Affairs Advisor Towhid Hossain and also call on Muhammad Yunus…reports Asian Lite News Pakistan’s Deputy Prime Minister and Foreign Minister Ishaq Dar

Balochistan: Where the State Makes People Disappear

The victims include students, journalists, and peaceful protesters, many of whom were abducted from cities such as Karachi and Islamabad….reports Asian Lite News A human rights organisation on Monday revealed that 785

Monsoon Havoc in Pakistan

Since June 26, torrential rains have killed at least 299 people—including 140 children—and injured 715 in Pakistan…reports Asian Lite News Since June 26, torrential monsoon rains have devastated Pakistan, killing at least

Bangladesh’s Dark Turn

With the Awami League outlawed and absent from the electoral fray, a vacuum has emerged — one that has not necessarily been filled with stability….reports Asian Lite News Bangladesh’s political landscape has
Go toTop

Don't Miss

Beijing has grand plans for South China Sea

China’s claim to sovereignty over the South China Sea and

Partnership with India key to tackle China challenge: US

In order to counter China’s growing aggression in the region,