Computerworld

Windows shortcut files targeted by ransomware gang Global Group

When Microsoft patched a vulnerability last summer that allowed threat actors to use Windows’ shortcut (.lnk) files in exploits, defenders might have hoped use of this tactic would decline. They were ...
CSOonline

North Korean hackers abuse LNKs and GitHub repos in ongoing campaign

The multi-stage campaign targeting South Korea uses weaponized Windows shortcuts and GitHub-based command-and-control to evade detection. DPRK-linked threat actors are preferring stealth over ...
Ars Technica

Can someone analyze this MALWARE string?

Suspicious Activity: The obfuscation, especially with creating and executing a file in the %TMP% directory (a common place for malware), suggests this script could be part of a malicious payload. The ...
heise online

Windows Zero-Day Vulnerability Exploited Against Diplomats During LNK Display

A Zero-Day Vulnerability in the Display of LNK Files in Windows became known at the end of August this year. Microsoft currently plans no fix and does not classify it as highly risky, unlike Trend ...
Mena FN

Malicious Shortcut Files Linked With Deceptive Pdfs In Global Espionage Campaign

A sophisticated cyber‐espionage operation is exploiting Windows shortcut files disguised alongside seemingly genuine PDF newsletters to surreptitiously infiltrate institutions across Asia and the ...
Wane

ANY.RUN Shows How Cyber Criminals Abuse WebDAV to Launch Malware Attacks

1. The attacker creates a shortcut (LNK) file that contains malicious commands. 2. The LNK file is then uploaded to the attacker's WebDAV server, ready to be downloaded and executed by the victim's ...