Microsoft Threat Intelligence has disclosed active exploitation of a zero-day vulnerability in the Windows Common Log File System (CLFS), tracked as CVE-2025-29824. The exploit, used in the wild, enabled attackers to escalate privileges on compromised machines and deliver ransomware payloads. The exploitation activity has been attributed to Storm-2460, a financially motivated threat actor group also […]
The post Windows CLFS Zero-Day Exploited to Deploy Ransomware appeared first on Daily CyberSecurity.