325
Threat actors exploited Windows 0-day for more than a year before Microsoft fixed it
(arstechnica.com)
This is a most excellent place for technology news and articles.
The fact that Windows hasn't solved the "fake extension" scam is wild. You can't make people not click stuff, obviously. But you absolutely could identify double extensions clearly intended to confuse people and give some kind of "this isn't a PDF" warning.
They're too busy finding new ways to inject telemetry and ads into your os, and degrade your experience. It takes a lot of resources to do this.
Edit: 'to' to 'too'. I blame fatigue.