Play Ransomware Exploits Windows Logging Flaw in Zero-Day Attacks

The Play ransomware group has exploited a high-severity vulnerability in the Windows Common Log File System (CLFS) during zero-day attacks to gain SYSTEM privileges and deploy malware on compromised systems. This vulnerability allowed attackers to elevate their privileges and gain full control of the affected systems. The specific technical details of the flaw and the exploitation methods used by the Play group were not disclosed in the article.