Is the Chinese Government exploiting a hole in Office for Mac?

Chinese authorities may be exploiting a security hole in Microsoft Office for Mac to target the Uyghur people

According to Kaspersky and AlienVault Labs, Chinese authorities may be exploiting a security hole in Microsoft Office for Mac to target the Uyghur people, an ethnic group of people who live in parts of Asia and are seeking independence from Chinese rule.

The targeted attacks exploit an old Office for Mac vulnerability (CVE-2009-0563) that was actually fixed over three years ago.

Kaspersky says it has noticed a "significant spike in the number of attacks during Jan 2013 and Feb 2013, indicating the attackers are extremely active at the moment."

Phishing emails have been sent to the Uyghur community that include Microsoft Word documents, which once open, activate a Mac OS X backdoor that "would initiate a connection with the server, and its "tshd_put_file" function was configured to drop stolen data in the "/downloads/" directory located there", writes Kaspersky.

The hackers are able to remotely control the computer and spy on its user's activities.

One of the corrupt files details the "Concerns over Uyghur People's Fundamental Rights Under the New Chinese Leadership". The documents can be identified by the author name: "Captain".

Similar attacks have been reported against other ethnic groups, including the Tibetan people and Uighur activists.

Follow Karen Haslam on Twitter / Follow MacworldUK on Twitter

Related:

Mac backdoor used in attacks against Uighur activists

The worst security exploits, fails and blunders: 2012 in review

Security expert claims Apple will lose out to 'open, sexy, flexible' competitors

Kaspersky Security for Mac review

Mountain Lion and Gatekeeper: What you need to know

Flashback the wake up call Apple needed: Kaspersky

FILL IN THE SURVEY - AND YOU COULD BE A WINNER: ARN wants to hear from YOU. Tell us how you run a successful business and you could win an adrenaline-fuelled adventure of your choice. COMPLETE THE ARN SURVEY.

Tags MacapplicationssecurityMicrosoftsoftwareExploits / vulnerabilitiesOffice suites

More about AppleKasperskyMicrosoft

ARN Directory | Distributors relevant to this article

ARN Directory | Vendors relevant to this article

Comments

Comments are now closed

 

Latest News

05:04PM
Australian Information Industry Association backs changes to ESOP
04:48PM
Blackline appoints APAC GM to lead ambitious growth plan
04:06PM
Fletcher lays down NBN strategy to address communications "equity"
01:09PM
ACCAN unveils Digital Business Kit for SMBs
More News
16 Sep
ChannelAdvisor Insite - Sydney 2014
16 Sep
Ingram Micro SMB Favourites Roadshow
16 Sep
National Data Centre Roadshow - Sydney
17 Sep
SAP HR Connect
View all events