It has more than 500 million active users worldwide.
They found a strange spreadsheet document linked to the hacking groups downloader components.
Leveraging this vulnerability allowed code execution via hijacking the control flow of the WPS Office plugin component promecefpluginhost.exe.
APT-C-60 created malicious spreadsheet documents disguised as standard MHTML exports of Microsoft Excel (XLS) files.
However, during the patch analysis, ESET researchers discovered that Kingsoft hadnt fully remediated the issue.
source: www.techworm.net
