Tibetan activists certainly are not paranoid if they share concerns about being spied on. In fact cyber spying warfare has hit Tibetan interests hard. Kirsten Doyle reported for the Central Tibetan Administration on Sept. 17, 2013, "Mac ‘Tibet’ malware variant discovered." There has been a new variant of the cyber espionage malware “Tibet” discovered in the wild.
OSX/Tibet.D, which is a fourth variant of the notorious Mac-focused malware developed for stealing data from machines of Tibetan activists, has been found in the wild. This malware originates in China, and was first discovered in March 2012. The one sole purpose of this malware is cyber espionage. It has been named “Tibet” because it was found in e-mails which specifically target Tibetan activists.
Lysa Myers, an Intego security researcher, says OSX/Tibet.D has learned some unbelievable new tricks. The attack arrives via a Java applet which is on a Web site. It is launched without a user, by way of a Java vulnerability. Once OSX/Tibet.D is installed, the malicious code opens a backdoor to the affected computer. The cyber criminals than gain sight and access of files on the machine, as well being capable of running commands.
Info Security has reported, "Tibet-focused Malware Learns New Tricks." This malware receives its commands from a server which is located in China. Attacks have targeted the Central Tibetan Administration, International Campaign for Tibet, and other Tibetan organizations and individuals. Some campaigns have been aimed at gathering intelligence about the activities of these groups.