Windows MSDT Zero-day Follina is Actively Exploited by Chinese APT Group

Recently discovered Microsoft Office zero-day vulnerability known as Follina is now actively being exploited in the wild by the Chinese APT hacking group TA413. According to the security company, Proofpoint TA413 is currently exploiting Follina zero-day by using URLs to deliver Zip archives that contain malicious Word Documents. Ongoing campaigns are impersonating the 'Women Empowerments Desk' of the Central Tibetan Administration and using the domain tibet-gov.web[.]app. Read more...