New .LNK Spoofing Flaw in Windows and Microsoft Refuses to Acknowledge It

A cybersecurity researcher, Wietze Beukema, has revealed new vulnerabilities in Windows Explorer via the lnk-it-up tool. These vulnerabilities allow attackers to spoof the properties of .LNK files (for example, displaying a target as "invoice.pdf") while executing LOLBins or PowerShell in the background. Microsoft has stated that these .LNK spoofing issues are not considered vulnerabilities. The Target field of .LNK files can no longer be relied upon to detect malicious files.