The newly found Windows shortcut vulnerability is now being actively exploited by state-sponsored Advanced Persistent Threat (APT) actors to execute covert malicious commands. According to new research conducted by Trend Micro's Zero Day Initiative (ZDI), the vulnerability, designated as ZDI-CAN-25373, is now being exploited by Chinese, Iranian, North Korean, and Russian threat actors for worldwide cyber espionage and data theft.
Organizations in the high-risk sectors like government, finance, telecommunication, military, and energy were the target of this attack, showing the necessity of early threat response security, darknet monitoring services, and digital threat scoring to minimize risks.
https://foresiet.com/blog/nation-state- ... nerability