Eset researchers have found two new types of malware exploiting the recently discovered Windows shell LNK flaw.

"One of the new pieces of malware, dubbed Chymine by researchers at Eset, exploits the LNK vulnerability to infect new machines and then tries to connect to a remote server and download another piece of malicious code," writes threatpost's Dennis Fisher. "That piece of malware is a keylogger, designed to monitor an infected PC's input and look for high-value data such as online banking passwords. Chymine does not create new, malicious LNK files on its own, however."

"Another piece of malware, known as Autorun.VB.RP, does have the ability to produce malicious LNK files that contain an exploit for the Windows shell vulnerability," Fisher writes.

Click here to read the threatpost article.