0patch
Microsoft “mitigates” Windows LNK flaw exploited as zero-day
Microsoft has silently “mitigated” a high-severity Windows LNK vulnerability exploited by multiple state-backed and cybercrime hacking groups in zero-day attacks. Tracked as CVE-2025-9491, this security flaw allows attackers to hide malicious commands within Windows LNK files, which can be used to deploy malware and gain persistence on compromised devices. However, the attacks require user interaction to […]
New Windows Themes zero-day gets free, unofficial patches
Free unofficial patches are now available for a new Windows Themes zero-day vulnerability that allows attackers to steal a target’s NTLM credentials remotely. NTLM has been extensively exploited in NTLM relay attacks, where threat actors force vulnerable network devices to authenticate against servers under their control, and pass-the-hash attacks, where they exploit system vulnerabilities or deploy malicious […]
0Patch promises Windows 10 support until 2030
While Microsoft plans to end support for Windows 10 in late 2025, 0patch comes with the promise of supporting Windows 10 v22H2 with critical security patches until 2030 and even further if there is enough demand. Fortunately, the $25-per-year or $35-per-year Pro and Enterprise subscriptions are also accompanied by a free plan. On October 14, […]