韓國駭客利用WPS Office零時差漏洞,企圖於東亞組織植入後門SpyGlace
支付動態 · 2024-08-29
資安業者ESET近日公布WPS Office零時差漏洞CVE-2024-7262,並指出韓國駭客駭客組織APT-C-60在半年前,就開始用來在東亞國家發動攻擊
研究人員認為,無論APT-C-60是自行挖掘或是購買漏洞,利用這種漏洞必須對應用程式內部進行研究,並且了解Windows如何載入處理程序,由於WPS Office有不少亞洲用戶,他們認為這代表該組織專門鎖定東亞國家而來。
針對駭客使用的這項漏洞,研究人員認為極為狡猾,因為可被用於欺騙用戶點選看似正常的試算表檔案,攻擊者還能搭配MHTML檔案,讓漏洞能夠遠端觸發。
罕見的是,ESET在公布調查結果的時候,首先提及漏洞通報的經過,突顯金山很可能早就知道漏洞已被利用的情況,後續處理過程卻不透明。
駭客從2月開始利用漏洞後,金山已於3月底悄悄修補了CVE-2024-7672,但並未公告此事,直到4月ESET研究人員分析已上傳到VirusTotal的惡意檔案,發現該漏洞已被用於實際攻擊行動的情況。
研究人員進一步調查修補程式碼,發現金山並未完整修補,仍有部分程式碼存在相關弱點CVE-2024-7673,他們後來在5月底通報,金山在6月下旬表示尚在解決問題,到了8月22日卻又改口承認,已於5月底就完成修補。
Popular articles
GAT CDMX 2025 Institutional Academy: Leaders and Experts Analyze the Present and Future of the Gaming Industry in Mexico and Lat
Sports Game
Brazil Proposes Raising Gambling Tax Rate to 24%, With Revenue Allocated to Social Security and Healthcare
Regulation
UK MPs reopen 2025 gambling inquiry as reform stalls
Regulation
1spin4win grows its Latin American presence by partnering with Fortuna Juegos
Online Game
Across 6 Cities: HUIDU Invites You to 8 World Cup Parties Redefining High-Value Social Networking
HUIDU Focus
Vietnam's tightening online gaming policy creates new market opportunities
Southeast Asia
JILI Partners with Cricket Legend AB de Villiers (ABD) to Launch Exclusive Branded Game Series 100% 11
Sports Game
Gaming & Technology Expo Makes a Powerful Entrance in CDMX
Marketing
PropellerAds Shared a New iGaming Case Study: 97,674 Installs and 12,701 Deposits in 3 Months
Marketing
GAT Expo Puerto Rico Will Pulse with the New Era of Gaming in the Caribbean
Marketing
HUIDU Invites You to Booth T70 at iGB L!VE 2026 — Let’s Ignite London This July!
HUIDU Focus
Vietnam’s Controlled Gaming Shift Gains Ground, But Domestic Demand Still Lags
Southeast Asia
B2B Tech Infrastructure Gains Momentum in Philippine Gaming Sector
Southeast Asia
Full House at GAT Expo Cartagena 2026 Academic Agenda
Online Game
Are you ready to maximize your earnings? Try ProPush.me Constructor!
Marketing
