Chinese Espionage Hackers Target Tibetans Using New LOWZERO Backdoor
The intrusions involved the exploitation of CVE-2022-1040 and CVE-2022-30190 (aka “Follina”), two remote code execution vulnerabilities in Sophos Firewall and Microsoft Office, respectively.