The Windows Shortcut Explot aka CPLINK, knows to be a zero-day vulnerability which affects all the version of Microsoft Windows. A shortcut link will be created (.lnk shortcut) to run the malicious DLL file. It is knows that the shortcut link could be on the website or attached to document.
As per Sophos
“The exploit works when you open a device, network share or WebDav point carrying an infection—you don’t need to click on anything for the exploit to work, even if you have AutoPlay and AutoRun disabled.
SophosLabs first saw this exploit at work through the rootkit W32/Stuxnet-B, which targets Siemens SCADA systems to discover the system default password.
While Stuxnet only affected Windows machines with infected USB drives plugged in, the Windows Shortcut Exploit in general can work through file shares and WebDav as well.”
However there is patches from Microsoft to block this vulnerability but networks which are protected with Sophos Endpoint is protected from this zero-day attack. Sophos is providing a security tool for their non Sophos customers to block the vulnerability
In order to run this free tool, first scan your computer with your updated Antivirus and make sure it is virus free then performs the patch. This patch will notify you as and when you click on such malicious link.
Secure your pc today with Sophos Patch Download
