Tag Archives: WinRAR

Russia-linked attackers found and exploited a high-severity WinRAR vulnerability before the maintainers of the Windows file archiver issued a fix. The bug, tracked as CVE-2025-8088, is a path-traversal flaw that affects the Windows version of the decompression tool. It received an 8.4 CVSS rating and, according to WinRAR, has been patched in the newest version, 7.13, released on July 31. …

BI.ZONE said the Paper Werewolf delivered the exploits in July and August through archives attached to emails impersonating employees of the All-Russian Research Institute. The ultimate goal was to install malware that gave Paper Werewolf access to infected systems. While the discoveries by ESET and BI.ZONE were independent of each other, it’s unknown if the groups exploiting the vulnerabilities are …

Security flaw in WinRAR allows malware to install at Windows startup  TechSpot WinRAR zero-day exploited to plant malware on archive extraction  BleepingComputer Newly discovered WinRAR exploit linked to Russian hacking group, can plant backdoor malware — zero day hack requires manual update to fix  Tom’s Hardware Patch Now: New WinRAR Flaw Used to Deliver Malware  PCMag Phishing attacks exploit WinRAR flaw CVE-2025-8088 to install …

WinRAR Zero-Day Under Active Exploitation – Update to Latest Version Immediately  The Hacker News WinRAR zero-day exploited to plant malware on archive extraction  BleepingComputer Newly discovered WinRAR exploit linked to Russian hacking group, can plant backdoor malware — zero day hack requires manual update to fix  Tom’s Hardware Patch Now: New WinRAR Flaw Used to Deliver Malware  PCMag Phishing attacks exploit WinRAR flaw CVE-2025-8088 …