The assault against Free Tibet and Uyghur supporters is unrelenting as another watering hole attack has been uncovered, this time against a caregiver site supporting Tibetan refugee children. The non-governmental organization (NGO) Tibetan Homes Foundation site remains compromised and is hosting a malicious Adobe Flash Player SWF file and is spreading backdoors signed with digital certificates stolen that were also part of the Winnti attacks. The attackers are either either re-selling the stolen certificates on the black market, or are closely tied to state-sponsored Chinese hacking groups responsible for attacks.
Source: https://threatpost.com/stolen-winnti-certificates-used-watering-hole-attack-against-tibet-orphans-site-041213/77727/