The Hacker News

Phantom Stealer Spread by ISO Phishing Emails Hitting Russian Finance Sector

Researchers report phishing emails in Russia using ISO attachments to deploy Phantom Stealer against finance and related ...
PCMag Australia

Warning: Torrent of Leonardo DiCaprio's Latest Movie Is Windows Malware

The malware is arriving through a torrent for One Battle After Another. Pirated downloads of the film have been circulating ...

Fake ‘One Battle After Another’ torrent hides malware in subtitles

A fake torrent for Leonardo DiCaprio's 'One Battle After Another' hides malicious PowerShell malware loaders inside subtitle ...
Business Times

Microsoft Quietly Fixes Windows LNK Zero-Day After Years of Global Exploitation by State Hackers

Microsoft quietly issued a fix for a long-exploited Windows zero-day vulnerability in its November security updates, closing ...

Microsoft Issues Unannounced Patch for Zero-Day LNK Vulnerability Used in Real-World Attacks

Microsoft quietly patched CVE-2025-9491, a Windows LNK flaw abused by state actors since 2017 for malware attacks ...

Microsoft Silently Fixes 8-Year Windows Security Flaw

The flaw, tracked as CVE-2025-9491, allowed cybercriminals to hide malicious commands from users inspecting files through ...
Cybernews

Despite Microsoft’s secret patch, LNK loophole remains viable for hackers to deliver malware

Microsoft has released a patch for link (LNK) files. However, it does not stop hackers from abusing them to deliver malware.
The Register on MSN

Microsoft quietly shuts down Windows shortcut flaw after years of espionage abuse

Silent Patch Tuesday mitigation ends ability to hide malicious commands in .lnk files Microsoft has quietly closed off a ...

Microsoft quietly patches LNK vulnerability that's been weaponized for years

The LNK vulnerability was used to launch remote code execution in cyber-espionage, data theft, and fraud attacks.
CSO Online

Windows shortcuts’ use as a vector for malware may be cut short

A third-party patch management company is cutting short attackers’ use of LNK files to smuggle in malicious commands, while ...
The Hacker News

Microsoft Silently Patches Windows LNK Flaw After Years of Active Exploitation

In other words, these shortcut files are crafted such that viewing their properties in Windows conceals the malicious ...