Dec 23 2007
The Demise of Hao Tian’s Blog
Elia Florio has written a very informative piece on a Chinese hacker named Hao Tian distributing a program that exploits vulnerabilities in MS Office for Word.
The attacker has only to bind an executable such as Backdoor or an Infostealer trojan, and the tool will do the rest. It will create a malicious MS Word file that can drop and run the chosen .exe file. No need to analyze buffer overflows, find return addresses, or program complicated shellcode. Zero knowledge, maximum result, and minimal effort.
Closely following the article, Hao Tian decided his registration was full and closed shop.
Go read the full article on this Chinese hacker malware at Symantec.
