Video game publisher Ubisoft is investigating a potential data breach after researchers discovered an unknown threat actor had access to Ubisoft’s infrastructure for around 48 hours. It’s uncertain how the company was breached, but the threat actor claims to have exfiltrated approximately 900GB of stolen data. Ubisoft experienced a cyber security incident in March 2022 and another incident in October 2020.
Unpatched Windows Shortcut Vulnerability Let Attackers Execute Remote Code
Security researcher Nafiez disclosed a vulnerability in Windows LNK files that allows remote code execution without user interaction. Microsoft will not patch it, citing “inadequate
