TechRadar

Microsoft quietly patches LNK vulnerability that's been weaponized for years

When you purchase through links on our site, we may earn an affiliate commission. Here’s how it works. Microsoft’s November 2025 Patch Tuesday fixed 63 flaws, including CVE-2025-9491 in Windows LNK ...
Bit-Tech

Microsoft releases .lnk bug fix

Microsoft has announced plans to launch an emergency patch for the .lnk vulnerability in the Windows shell, after initially indicating it would wait for the next Patch Tuesday release. Despite ...
CRN

Microsoft Launches 'Fix It' Tool For .LNK Flaw

Microsoft implemented the "Fix It" tool in an attempt to temporarily plug the security hole and prevent existing attacks that are already exploiting the vulnerability by disabling some icons from ...
PC Magazine

Microsoft Issues 'Fix It' For .LNK Shortcut Hole

Microsoft has updated their advisory for the recently-disclosed shortcut-handling vulnerability that affects all versions of Windows. A "Fix-it" is now provided to implement the workaround for the ...
Hosted on MSN

Microsoft issues unannounced patch for zero-day LNK vulnerability used in real-world attacks

Cybersecurity experts warn of a stealthy Microsoft patch addressing a long-exploited Windows LNK zero-day vulnerability, CVE-2025-9491, now mitigated in November 2025 updates. Threat actors, including ...
CSOonline

Attackers move away from Office macros to LNK files for malware delivery

Barriers that Microsoft has placed to prevent malicious macros has forced some cybercriminals to use LNK files for malware delivery, but at the cost of easier detection. For years attackers have used ...