Home Innovation Microsoft Windows Users Warned of LNK Fi...

Windows Users Warned of LNK File Weakness in Ongoing Cyberattack

Microsoft

Business Honor
11 June, 2025

Hackers attack old Windows LNK file weaknesses. Experts warn to update antivirus software like Microsoft Defender and to avoid files from unknown sources.

Microsoft Windows users have received alerts about a major cyberattack that attacks an old weakness in LNK files. As reports from Forbes, Kaspersky, and Trend Micro cybersecurity experts show, the hackers are actively exploiting this weakness, known as ZDI-CAN-25373.

Windows File Explorer masks some of the hidden parts of LNK files. Allowing attackers to include harmful network links in the file. Hidden to the user, the LNK file could run harmful commands or download further software when it is accessed. Users who are on different network segments (VLANs) may still be affected by this.

Microsoft hasn't given this security weakness a CVE (Common Vulnerabilities and Exposures) number, despite the reality that it has been there for years. Microsoft responded by stating that Smart App Control can ban dangerous files from the internet and that Windows Defender antivirus can recognize dangerous LNK files.

Microsoft stated, "We appreciate ZDI bringing this to our notice." Microsoft added, "Smart App Control enables additional security, while Defender protects against this danger. We warn users to always follow security alerts and avoid downloading items from unknown sources.” Along with that, Microsoft also claimed that the UI problem isn't serious enough to demand an immediate solution, though it could eventually be fixed in a future update.

Experts in cybersecurity are concerned about this, especially since attacks have already taken advantage of this weakness. Experts advise the users not to open LNK files from unfamiliar sources, update antivirus software like Microsoft Defender, and closely follow the security alerts from Windows in order to stay safe.