Security News > 2025 > April > Microsoft: Windows CLFS zero-day exploited by ransomware gang

Microsoft: Windows CLFS zero-day exploited by ransomware gang

2025-04-08 19:05

Microsoft says the RansomEXX ransomware gang has been exploiting a high-severity zero-day flaw in the Windows Common Log File System to gain SYSTEM privileges on victims' systems. [...]

News URL

https://www.bleepingcomputer.com/news/security/microsoft-windows-clfs-zero-day-exploited-by-ransomware-gang/

#microsoft #ransomware #windows #zeroday

Related news

Microsoft fixes actively exploited Windows CLFS zero-day (CVE-2025-29824) (source)
PipeMagic Trojan Exploits Windows Zero-Day Vulnerability to Deploy Ransomware (source)
Microsoft: Windows CLFS Vulnerability Could Lead to ‘Widespread Deployment and Detonation of Ransomware’ (source)
Play Ransomware Exploited Windows CVE-2025-29824 as Zero-Day to Breach U.S. Organization (source)
Play ransomware exploited Windows logging flaw in zero-day attacks (source)
Microsoft's killing script used to avoid Microsoft Account in Windows 11 (source)
Microsoft tests new Windows 11 tool to remotely fix boot crashes (source)
New Windows 11 trick lets you bypass Microsoft Account requirement (source)
Microsoft adds hotpatching support to Windows 11 Enterprise (source)
Microsoft starts testing Windows 11 taskbar icon scaling (source)

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.