Exploit Generator Kit Shows Links between Three Chinese Cyberespionage Campaigns

  • 1 July 2016
  • 2 replies
  • 187 views

Userlevel 7
Badge +54

MNKit usage links three cyber-espionage campaigns

 
                               http://i1-news.softpedia-static.com/images/fitted/340x180/exploit-generator-kit-shows-links-between-three-chinese-cyberespionage-campaigns.png
 
Jul 1, 2016 10:35 GMT  ·  By Catalin Cimpanu An analysis of the MNKit exploit generator shows a connection between three cyber-espionage campaigns believed to originate from China.
 
MNKit is a software package with a limited circulation that can embed exploit code inside Office files in order to create custom malware.
 
This malware builder is specially adapted to create malicious MHTML files that take advantage of CVE-2012-0158, a five-year old vulnerability in the MS Office suite that leads to remote code execution on targeted systems.
 
Palo Alto Networks researchers say they've identified malware used in three different cyber-espionage campaigns that was generated with this toolkit, leading them to believe that the same group may be behind all three attacks.
 Full Article

2 replies

Userlevel 7
China is very active as can be attested in this thread as these cyber-espionage campaigns are proving effective to a extent.
Userlevel 7
This is not surprising given that most of the hacking & cyber threats/espionage thatcomes out of China is apparently orchestrated by the growing cyber army that the PLA has been assiduously building for a while now...and the West is only just starting to cotton on/try to catch up.

Reply