June 3, 2022
1 min read

State-backed Chinese hackers exploiting new MS Office bug

Chinese hackers have a long history of using software security flaws to target Tibetans….reports Asian Lite News

China government-backed hackers, previously observed targeting the Tibetan government-in-exile based in Dharamshala, are actively exploiting a bug in Microsoft Office to steal and delete users’ data.

According to cyber-security firm Proofpoint, the newly-discovered vulnerability titled ‘Follina’ in Microsoft Office is being exploited by advanced persistent threat (APT) group ‘TA413’ linked to the Chinese government.

“TA413 CN APT spotted ITW exploiting the #Follina #0Day using URLs to deliver Zip Archives which contain Word Documents that use the technique. Campaigns impersonate the “Women Empowerments Desk” of the Central Tibetan Administration,” Proofpoint said in a tweet.

Chinese hackers have a long history of using software security flaws to target Tibetans.

Microsoft has acknowledged the vulnerability, officially titled CVE-2022-30190 regarding the Microsoft Support Diagnostic Tool (MSDT) in Windows vulnerability, but was yet to issue a security patch.

“An attacker who successfully exploits this vulnerability can run arbitrary code with the privileges of the calling application. The attacker can then install programmes, view, change, or delete data, or create new accounts in the context allowed by the user’s rights,” Microsoft said in an update.

In a blog post, cyber-security researcher Kevin Beaumont also detailed the new vulnerability.

According to the Verge, current analysis suggests that ‘Follina’ affects Microsoft Office 2013, 2016, 2019, 2021, Office ProPlus, and Office 365.

The US Cybersecurity and Infrastructure Security Agency has also asked system administrators to implement Microsoft’s guidance for mitigating exploitation.

“Customers with Microsoft Defender Antivirus should turn-on cloud-delivered protection and automatic sample submission. These capabilities use artificial intelligence and machine learning to quickly identify and stop new and unknown threats,” said Microsoft.

ALSO READ: Canada says China harassed its aircraft on N. Korea mission

Previous Story

Strong Franco-Bahraini relations highlighted at RCM

Next Story

OPEC+ to boost oil production

Latest from -Top News

UN Slams Pakistan Over Minority Attacks

The minorities in Pakistan – including Ahmadiyya Muslims, Christians, Hindus, and Shia Muslims – continue to be neglected and increasingly subjected to targetted state-backed persecution….reports Asian Lite News Alarmed by rising violence

Cambodia-Thailand Agree to Truce

The border violence has claimed at least 35 lives and left more than 200 injured, based on figures from Thai and Cambodian officials….reports Asian Lite News Cambodia and Thailand have agreed to

Baloch Activist Thanks India, Slams Pakistan Terror

Mir Yar Baloch also appreciated the extraordinary courage and professionalism of the Indian Armed Forces, the “responsible and patriotic role” of the Indian media…reports Asian Lite News Prominent Baloch human rights activist

UK Warns China Over Taiwan Moves

Healey’s comments come amid rising global concerns over Chinese military activity around Taiwan and the growing Western focus on the Indo-Pacific region. British Defence Secretary John Healey has said the UK is

US Sticks to August 1 Tariff Deadline

US Commerce Secretary Howard Lutnick ruled out any possibility of an extension…reports Asian Lite News The US administration on Sunday said the August 1 deadline for imposing reciprocal tariffs remains unchanged and
Go toTop

Don't Miss

Stop whitewashing mistakes, Xi tells party 

President Xi urged cadres to confront corruption boldly, emphasizing “self-revolution”

Chinese envoy calls on Jaishankar in Delhi

Xu arrived in New Delhi on May 10 and assumed