Security News > 2024 > August > APT-C-60 Group Exploit WPS Office Flaw to Deploy SpyGlace Backdoor

2024-08-28 13:48
A South Korea-aligned cyber espionage has been linked to the zero-day exploitation of a now-patched critical remote code execution flaw in Kingsoft WPS Office to deploy a bespoke backdoor dubbed SpyGlace. The activity has been attributed to a threat actor dubbed APT-C-60, according to cybersecurity firms ESET and DBAPPSecurity. The attacks have been found to infect Chinese and East Asian users
News URL
https://thehackernews.com/2024/08/apt-c-60-group-exploit-wps-office-flaw.html
Related news
- UK Home Office silent on alleged Apple backdoor order (source)
- Chinese APT Lotus Panda Targets Governments With New Sagerunex Backdoor Variants (source)
- APTs have been using zero-day Windows shortcut exploit for eight years (ZDI-CAN-25373) (source)
- Top 3 MS Office Exploits Hackers Use in 2025 – Stay Alert! (source)