BleepingComputer reports that recent phishing attacks by the QBot malware operation, also known as Qakbot, have involved the exploitation of a DLL hijacking flaw in the Windows 10 WordPad executable "write.exe."
Article Link: Windows WordPad vulnerability targeted in new QBot malware attacks | SC Media