Microsoft patches Windows zero-day bug used in ransomware attacks

Microsoft has patched a zero-day vulnerability affecting all supported versions of Windows, which researchers say hackers exploited to launch ransomware attacks.
Microsoft said in a security alert on Tuesday that an attacker who successfully exploited the vulnerability in the Windows Common Log File System (CLFS) could gain full access to an unpatched system. Microsoft confirmed that attackers were actively exploiting the vulnerability.
Russian cybersecurity company Kaspersky says the flaw was used to deploy Nokoyawa ransomware, predominantly targeting Windows servers belonging to small and me

リンク元