CVE-2025-9491 Exploited in Europe with No Microsoft Fix

01 Nov 2025

Arctic Wolf Labs reports that threat actors are exploiting CVE-2025-9491, impacting Microsoft Windows users in Europe. The vulnerability allows remote code execution, first disclosed in March 2025.

Attacks on Diplomats

China-affiliated cybercriminals have targeted diplomatic entities in Hungary, Belgium, among others, using this vulnerability. Their strategy involves phishing emails with URLs leading to .lnk shortcuts. These shortcuts execute obfuscated PowerShell commands.

Risk and Mitigations

The attack results in the deployment of PlugX, a remote access trojan. As a preventive measure, users should block .lnk files from unknown sources in Windows Explorer settings. Microsoft has yet to announce a patch to mitigate this risk.

  • Arctic Wolf Labs confirmed the exploitation on 2025-11-01.
  • Vulnerability allows remote code execution in Windows.
  • Targets include diplomatic entities across Europe.
  • No patch is currently available from Microsoft.
  • Blocking .lnk files advised as a temporary mitigation.

Update: 01 Nov 2025

Top charts for Desktop Windows

uTorrent

uTorrent

Latest update uTorrent download for free for Windows PC or Android mobile

5
1032 reviews
6325336
downloads
Zona

Zona

Latest update Zona download for free for Windows PC or Android mobile

4
614 reviews
1245976
downloads
WinRAR

WinRAR

Latest update WinRAR download for free for Windows PC or Android mobile

5
735 reviews
490860
downloads
Minecraft

Minecraft

Latest update Minecraft download for free for Windows PC or Android mobile

5
750 reviews
452701
downloads

News and reviews for Desktop Windows

Skinballs Preserved by Strong Museum for Future Study

Skinballs Preserved by Strong Museum for Future Study

The Strong Museum has preserved Skinballs, a Saints Row test NPC, for future study and preservation, enhancing gaming history.

Read more
Cubic Odyssey Offers 40% Off With New Features

Cubic Odyssey Offers 40% Off With New Features

Cubic Odyssey, by Atypical Games, blends survival, crafting, and space travel. Available on Steam with a 40% discount until 2023-11-14.

Read more
Fractured Utopias Adds Depth to Frostpunk 2 Factions

Fractured Utopias Adds Depth to Frostpunk 2 Factions

Fractured Utopias enriches Frostpunk 2 with new skill trees and events, launching on 2025-12-08. Early testing open until 2025-11-03.

Read more
War Sails Launches Naval Combat in Bannerlord

War Sails Launches Naval Combat in Bannerlord

War Sails in Bannerlord ushers in naval tactics with an expansion available from 2023-11-26, priced at $24.99.

Read more
AMD Confirms Continued Windows 10 Driver Support

AMD Confirms Continued Windows 10 Driver Support

AMD assures users that Windows 10 drivers remain supported with the new Adrenalin Edition 25.10.2 release.

Read more
Timberborn Nears 1.0 Release with Expanded Features

Timberborn Nears 1.0 Release with Expanded Features

Timberborn is approaching its 1.0 release with new maps and mechanics; testing of new features is ongoing.

Read more
CVE-2025-9491 Exploited in Europe with No Microsoft Fix

CVE-2025-9491 Exploited in Europe with No Microsoft Fix

CVE-2025-9491 exploited in attacks on European diplomacy; no Microsoft fix yet. Update Windows settings for security.

Read more
GOG Adds 150 Games to Preservation Program

GOG Adds 150 Games to Preservation Program

GOG expands its preservation program, growing from 100 to 250 classic games. Key additions include Splinter Cell and Tomb Raider.

Read more
Dreamlike Rhythm Game Hyperbeat Released on PC

Dreamlike Rhythm Game Hyperbeat Released on PC

Hyperbeat, an indie rhythm game by Dreamware Media, launched October 22, 2025, offering immersive music experiences for PC players.

Read more
Saints Row Prequel Pitch Requested by Embracer

Saints Row Prequel Pitch Requested by Embracer

Chris Stockman aims to revive the Saints Row franchise with a proposed prequel. Embracer Group shows interest as of 2025-11-01.

Read more
All article