Ransomware attackers abused a zero-day flaw in a widely used Windows logging system for managing transactional information to launch attacks against organisations in the US real estate sector, Microsoft revealed Tuesday.
In a blog post, the tech giant stated that the perpetrators employed a previously unknown flaw discovered in Windows’ Common Log File System – a popular target for malicious actors seeking privilege escalation – to attack “a small number of targets,” including American real estate firms, a Spanish software company, Venezuela’s financial sector, and Saudi Arabia’s retail sector.
The flaw, identified as CVE-2025-29824, has a CVSS score of 7.8 and has been added to the Cybersecurity and Infrastructure Security Agency’s “Known Exploited Vulnerabilities Catalogue”.
Microsoft stated that Storm-2460, a ransomware threat actor, used the issue to spread PipeMagic malware. In March, the firm addressed a different bug in the Windows Win32 Kernel Subsystem that allowed hackers to escalate privileges to the system level, an exploit that researchers later linked to targe
[…]
Content was cut in order to protect the source.Please visit the source for the rest of the article.
[…]
Content was cut in order to protect the source.Please visit the source for the rest of the article.
This article has been indexed from CySecurity News – Latest Information Security and Hacking Incidents
Read the original article: