WhatsApp phishing attack spreads VBScript malware through fake business documents

A malware campaign is using compromised WhatsApp accounts to send fake business documents that hide VBScript files, leading to remote access on Windows PCs. The activity has been seen across multiple countries and uses localized filenames to trick recipients into opening the attachment.

Microsoft Adds Mitigations for YellowKey BitLocker Bypass After Public Exploit Release

Microsoft has rolled out mitigations for YellowKey, a publicly disclosed Windows zero-day that can bypass BitLocker on systems with physical access. The company says the fix centers on stopping the FsTx Auto Recovery Utility from launching inside WinRE, while researchers say the flaw exposes a deeper issue with Transactional NTFS replay.