This 8-year-old Home windows safety flaw continues to be being exploited by hackers

The safety vulnerability, defined

The flaw in query is a zero-day vulnerability with designation CVE-2025-9491, which impacts the processing of LNK information on Home windows and has already been exploited 1000’s of occasions.

A latest weblog submit by researchers from Arctic Wolf introduced renewed consideration to this situation, who found {that a} hacker group has used CVE-2025-9491 for assaults once more. The goal was apparently a number of EU nations, with hackers repeatedly utilizing the flaw to focus on diplomats. The newest assaults occurred in Belgium, Hungary, Italy, Serbia, and the Netherlands on the finish of 2024.

The strategy of assault is comparatively easy because the attackers solely have to ship a malicious file to a goal gadget (e.g., through phishing emails). The individual should then open the file, which permits the execution of malicious code that can be utilized for, say, espionage.

Within the newest wave of assaults, the hackers apparently tried to inject a Trojan virus that allows distant entry on affected units, permitting the execution of all kinds of instructions. Prior to now, hacker teams from China, Iran, North Korea, and Russia have used this technique to flow into malicious information, in keeping with a report by Pattern Micro.