Hosted on MSN

State sponsored hackers have been exploiting this LNK vulnerability for years - and it has only just been patched by Microsoft

Microsoft’s November 2025 Patch Tuesday fixed 63 flaws, including CVE-2025-9491 in Windows LNK files The bug let attackers hide malicious commands in shortcut files, enabling RCE attacks Exploited ...
TechRadar

Microsoft quietly patches LNK vulnerability that's been weaponized for years

When you purchase through links on our site, we may earn an affiliate commission. Here’s how it works. Microsoft’s November 2025 Patch Tuesday fixed 63 flaws, including CVE-2025-9491 in Windows LNK ...
Bleeping Computer

Microsoft "mitigates" Windows LNK flaw exploited as zero-day

Microsoft has silently "mitigated" a high-severity Windows LNK vulnerability exploited by multiple state-backed and cybercrime hacking groups in zero-day attacks. Tracked as CVE-2025-9491, this ...
Threat Post

Stuxnet LNK Exploits Still Widely Circulated

Endpoints are still encountering exploits for the LNK vulnerability, one of the principal infection mechanisms used by the Stuxnet worm. One of the alleged mandates around the development of the ...