Following up on a story we brought to you yesterday on Cyber Security Headlines, Chinese-linked threat actors, known as TA413, are now actively exploiting a Microsoft Office zero-day (known as ‘Follina’) to remotely execute malicious code on Windows systems. Proofpoint researchers observed TA413 launching its exploits via the MSDT protocol when victims open or preview Word documents delivered in ZIP archives.The bug, tracked as CVE-2022-30190, impacts all installs later than Windows 7 client and Windows Server 2008.
Link: Cyber Security Headlines – Follina update, Tension inside Google, IBM pays $1.6 billion
via cisoseries.com
Techie.Buzz 