ESET warns that at least two Russian hacking groups are using the zero-day flaw in WinRAR for cyberespionage purposes.

ESET Research discover a zero-day vulnerability in WinRAR being exploited in the wild in the guise of job application ...

Plus, RomCom isn't the only Russia-linked crew to abuse WinRAR holes. Fancy Bear, the GRU cyber-espionage crew, previously exploited CVE-2023-38831 for large-scale phishing campaigns against ...

If you use WinRAR or other affected components such as the Windows versions of its command line utilities, UnRAR.dll, or the ...

A high-severity zero-day in the widely used WinRAR file compressor is under active exploitation by two Russian cybercrime groups. The attacks backdoor computers that open malicious archives attached ...

A newly discovered vulnerability in WinRAR has been exploited in the wild by the Russia-aligned cyber group RomCom. According ...

Researchers have released a report detailing how a recent WinRAR path traversal vulnerability tracked as CVE-2025-8088 was ...

The maintainers of the WinRAR file archiving utility have released an update to address an actively exploited zero-day ...

Iconic archiving platform WinRAR carried a dangerous zero-day vulnerability which could have let hackers plant malware on ...

A recently fixed WinRAR vulnerability tracked as CVE-2025-8088 was exploited as a zero-day in phishing attacks to install the ...

WinRAR patched CVE-2025-8088, a zero-day exploited by Russia RomCom in attacks on financial, defense, manufacturing and ...

ESET researchers Anton Cherepanov, Peter Košinár and Peter Strýček identified the vulnerability. According to ESET expert ...