A Chinese threat actor was found using a zero-day vulnerability, dubbed Follina, in Microsoft Office products to distribute zero-click malware. The attackers used Follina to target Tibetan organizations and Tibetans living abroad with malware.
- Tibetan organizations and Tibetans living abroad
Suspected state sponsor
Type of incident
- Civil society
Victim government reaction