A new malware campaign targeting Afghanistan and India is exploiting a now-patched, 20-year-old flaw affecting Microsoft Office. Cisco Talos attributed the cyber campaign to a “lone wolf” threat actor operating a Lahore-based fake IT company called Bunse Technologies. The attacks work by taking advantage of political and government-themed lure domains that host the malware payloads, with the infection chains leveraging weaponized RTF documents and scripts that distribute malware to victims. The flaw, which is believed to have existed since 2000, was eventually addressed by Microsoft as part of its Patch Tuesday updates for November 2017.”]
Source: https://thehackernews.com/2021/10/lone-wolf-hacker-group-targeting.html