CVE-2025-9491 Exploited in Europe with No Microsoft Fix

01 Nov 2025

Arctic Wolf Labs reports that threat actors are exploiting CVE-2025-9491, impacting Microsoft Windows users in Europe. The vulnerability allows remote code execution, first disclosed in March 2025.

Attacks on Diplomats

China-affiliated cybercriminals have targeted diplomatic entities in Hungary, Belgium, among others, using this vulnerability. Their strategy involves phishing emails with URLs leading to .lnk shortcuts. These shortcuts execute obfuscated PowerShell commands.

Risk and Mitigations

The attack results in the deployment of PlugX, a remote access trojan. As a preventive measure, users should block .lnk files from unknown sources in Windows Explorer settings. Microsoft has yet to announce a patch to mitigate this risk.

  • Arctic Wolf Labs confirmed the exploitation on 2025-11-01.
  • Vulnerability allows remote code execution in Windows.
  • Targets include diplomatic entities across Europe.
  • No patch is currently available from Microsoft.
  • Blocking .lnk files advised as a temporary mitigation.

Update: 01 Nov 2025

Top charts for Desktop Windows

uTorrent

uTorrent

Latest update uTorrent download for free for Windows PC or Android mobile

5
1032 reviews
6909232
downloads
Zona

Zona

Latest update Zona download for free for Windows PC or Android mobile

4
614 reviews
1496855
downloads
WinRAR

WinRAR

Latest update WinRAR download for free for Windows PC or Android mobile

5
735 reviews
626588
downloads
Minecraft

Minecraft

Latest update Minecraft download for free for Windows PC or Android mobile

5
750 reviews
472682
downloads

News and reviews for Desktop Windows

Steam Replay 2025 Showcases Annual Gaming Insights

Steam Replay 2025 Showcases Annual Gaming Insights

Steam Replay 2025 offers gamers detailed insights on their yearly activity, ranking top games played and achievements earned.

Read more
Valve Releases Steam Replay 2025 for Gaming Insights

Valve Releases Steam Replay 2025 for Gaming Insights

Steam Replay 2025 by Valve offers personalized gaming stats, comparing playtime and habits over the past year.

Read more
Games2025: Top PC and Console Game Releases Analyzed

Games2025: Top PC and Console Game Releases Analyzed

Games2025 ranks top new games on Steam, PlayStation, and Xbox with trends and revenue insights.

Read more
GOTY 2025: Kingdom Come: Deliverance 2 Wins Top Honors

GOTY 2025: Kingdom Come: Deliverance 2 Wins Top Honors

Kingdom Come: Deliverance 2 clinched the GOTY 2025 award for its immersive 15th-century simulation and deep gameplay. Expect enhanced player engagement.

Read more
Agent Tesla Trojan Spreads via Torrent Links

Agent Tesla Trojan Spreads via Torrent Links

Agent Tesla trojan hides in torrents of 'Battle After Battle' film, posing risk to downloaders.

Read more
Silksong Reaches 7 Million Sales in 3 Months Without Game Pass

Silksong Reaches 7 Million Sales in 3 Months Without Game Pass

Silksong surpasses 7 million sales excluding Game Pass in three months. Team Cherry attributes success to community support.

Read more
Windows 11 New Features Enhance Performance and User Interface

Windows 11 New Features Enhance Performance and User Interface

Microsoft releases Windows 11 Insider Preview Build for Canary Channel, refining UI, gaming, and camera capabilities.

Read more
Shrine's Legacy Developer Refutes AI Usage Accusations

Shrine's Legacy Developer Refutes AI Usage Accusations

Shrine's Legacy by Positive Concept Games faces AI accusations on Steam, rebutted by developers emphasizing human artistry.

Read more
Commander Keen’s Impact on Gaming Technologies

Commander Keen’s Impact on Gaming Technologies

Commander Keen reshaped gaming with smooth scrolling tech and inspired id Software's founding.

Read more
Hytale Pre-Orders Open Ahead of 2026 Release

Hytale Pre-Orders Open Ahead of 2026 Release

Hytale pre-orders are now available before its January 2026 launch, sparking community interest.

Read more
All article