Attackers Weaponize Windows Shortcut Files to Deploy Global Group Ransomware

Attackers are weaponizing Windows shortcut files (.lnk) in a phishing campaign to deploy the Global Group ransomware. This ransomware operates offline, encrypts files with the .Reco extension, and uses advanced techniques to evade detection and hinder investigation.