Csoonline
New Techniques Discovered for Abusing Windows LNK Files
First seen 13 Feb 2026, 17:12 UTC
•


•82% similarity
•36.9
Share:
Export
Ask AI about this cluster
Analyzing cluster data...
Referenced clusters:
Something went wrong. Please try again.
Cluster AI
Ask questions about this threat cluster with AI-powered analysis.
Get Researcher $29.99/moArticle Content
Browse articles
Security researcher Wietze Beukema disclosed four new techniques for manipulating Windows LNK shortcut files, allowing attackers to hide malicious targets from users. These methods can facilitate phishing, USB-borne attacks, and other malicious actions without users' awareness. Microsoft stated that these issues do not qualify as vulnerabilities.
ThreatCluster AI
Timeline
2025-08-26
CVE-2025-9491 published
2025-11-07
First public PoC for CVE-2025-9491 released
2026-02-12
Wietze Beukema disclosed new LNK spoofing techniques at Wild West Hackin' Fest
2026-02-13
Csoonline article published discussing new LNK abuse methods