Two Windows vulnerabilities, one a 0-day, are under active exploitation(arstechnica.com)
arstechnica.com
Two Windows vulnerabilities, one a 0-day, are under active exploitation
https://arstechnica.com/security/2025/10/two-windows-vulnerabilities-one-a-0-day-are-under-active-exploitation/
5 comments
I don't see how LLMs could pump stuff like this out anytime soon. Especially when you'll have defensive LLMs around that time.
If anything else, this just shows that we need more layered security for everything, even the ancient parts of the OS.
If anything else, this just shows that we need more layered security for everything, even the ancient parts of the OS.
I think you misunderstand. Microsoft is pushing to build their software using LLMs, so bugs inand then bugs out. GIGO.
> Trend Micro went on to say that the groups were exploiting the vulnerability, then tracked as ZDI-CAN-25373, to install various known post-exploitation payloads on infrastructure located in nearly 60 countries, with the US, Canada, Russia, and Korea being the most common.
> On Thursday, security firm Arctic Wolf reported that it observed a China-aligned threat group, tracked as UNC-6384, exploiting CVE-2025-9491 in attacks against various European nations.
So as long as the China hasn't exploited it: Nothing to see here please move along. But hey, we have passkeys and biometric authentication, and secure boot and TLS. /s
> On Thursday, security firm Arctic Wolf reported that it observed a China-aligned threat group, tracked as UNC-6384, exploiting CVE-2025-9491 in attacks against various European nations.
So as long as the China hasn't exploited it: Nothing to see here please move along. But hey, we have passkeys and biometric authentication, and secure boot and TLS. /s
Will humanity survive LLM GIGO?