all InfoSec news
Hackers Use Weaponized LNK Files to Exploit Microsoft Connection Manager Profile
Cyber Security News cybersecuritynews.com
Threat actors have shifted from using malicious macros to malicious LNK files for initial access. This is due to Microsoft’s announcement in 2022 to disable macros by default for Office documents downloaded from unknown sources or the internet. The current attack vector uses the Microsoft Connection Manager Profile, which runs the process cmstp.exe for proxying […]
The post Hackers Use Weaponized LNK Files to Exploit Microsoft Connection Manager Profile appeared first on Cyber Security News.
access announcement attack attack vector current default documents exploit files hackers initial access internet lnk lnk files macros malicious manager microsoft office profile threat threat actors weaponized lnk files