Security News > 2020 > March > Watering-Holes Target Asian Ethnic Victims with Flash Update Decoy

Watering-Holes Target Asian Ethnic Victims with Flash Update Decoy
2020-03-31 21:16

An extensive campaign has surfaced that targets Windows users belonging to a specific Asian religious and ethnic group.

While the Uighurs - an ethnic and religious minority in China - have been the targets of multiple cyberattacks and surveillance in the past, the firm said that it couldn't reveal the identity of the target group.

"We are ready to share relevant the information we have on those attacks with any group/organization that feels it may become a target of this campaign, and that we've also been hard at work trying to contact the victims we know of."

Its job is to fingerprint visitors to the watering hole to see if they're targets for the next stages of the attack - it collects target information and sends it via HTTP GET requests to a remote server, which returns a JSON-formatted response of either "True" or "False."

The Flash update is no longer valid, so it will fail with a message stating that the installer is outdated or renamed, and will direct the user to the Adobe website, according to the analysis.


News URL

https://threatpost.com/watering-holes-asian-ethnic-flash-update-decoy/154323/