Cybersecurity researchers uncovered fresh evidence of an ongoing cyberespionage campaign against Indian defense units and armed forces personnel. The campaign’s starting point is an email with an embedded malicious attachment that triggers an infection chain via a series of steps to download the final-stage payload. One of them exploited template injection and Microsoft Equation Editor flaw (CVE-2017-11882), a 20-year old memory corruption issue in Microsoft Office, which, when exploited successfully, let attackers execute remote code on a vulnerable machine even without user interaction.
Source: https://thehackernews.com/2020/09/cyberattack-indian-army.html