<ul><li>At least 11 state-sponsored threat groups have been abusing Windows shortcut files for espionage and data theft, according to Trend Micro's Zero Day Initiative.</li><li>These threat actors have exploited the vulnerability ZDI-CAN-25373, with 1,000 malicious .lnk files discovered by ZDI researchers.</li><li>The vulnerability has been targeted by APT groups from North Korea, Iran, Russia, and China, with attacks aimed at various sectors and regions.</li><li>Microsoft has been notified of the vulnerability but has not addressed it with a security patch.</li></ul>

Nation-state actors and cybercrime gangs abuse malicious .lnk files for espionage and data theft

Discover more