Windows Shell vulnerability confirmed as concern grows
19 Jul 2010
The Tech Herald, By Steve Ragan
Security author and analyst Brian Krebs broke a story on Thursday about a new flaw in Windows that is being used to spread Malware. Since then, the Malware itself has sparked concern in certain SCADA circles and Microsoft has confirmed the Zero-Day attack.
Microsoft has confirmed the existence of a new vulnerability that is targeting Windows Shell, due to the fact that the Windows operating system incorrectly parses shortcuts. The *.LNK vulnerability, as it has been dubbed, is a clever find according to many experts. It was discovered after a Belarus-based anti-Virus company inspected a new piece of Malware.