> Trend Micro went on to say that the groups were exploiting the vulnerability, then tracked as ZDI-CAN-25373, to install various known post-exploitation payloads on infrastructure located in nearly 60 countries, with the US, Canada, Russia, and Korea being the most common.
> On Thursday, security firm Arctic Wolf reported that it observed a China-aligned threat group, tracked as UNC-6384, exploiting CVE-2025-9491 in attacks against various European nations.
So as long as the China hasn't exploited it: Nothing to see here please move along.
But hey, we have passkeys and biometric authentication, and secure boot and TLS. /s
cyanydeez•3mo ago
Cant wait for production LLMs to crank these out daily and microsft start doing the type of celebrating Republicans do when they catch drug smugglers at the border.
Will humanity survive LLM GIGO?
Batman8675309•3mo ago
I don't see how LLMs could pump stuff like this out anytime soon. Especially when you'll have defensive LLMs around that time.
If anything else, this just shows that we need more layered security for everything, even the ancient parts of the OS.
cyanydeez•3mo ago
I think you misunderstand. Microsoft is pushing to build their software using LLMs, so bugs inand then bugs out. GIGO.
hulitu•3mo ago
> On Thursday, security firm Arctic Wolf reported that it observed a China-aligned threat group, tracked as UNC-6384, exploiting CVE-2025-9491 in attacks against various European nations.
So as long as the China hasn't exploited it: Nothing to see here please move along. But hey, we have passkeys and biometric authentication, and secure boot and TLS. /s