The attacks used spearphishing campaigns to target financial, manufacturing, defense, and logistics companies in Europe and Canada.

Plus, RomCom isn't the only Russia-linked crew to abuse WinRAR holes. Fancy Bear, the GRU cyber-espionage crew, previously exploited CVE-2023-38831 for large-scale phishing campaigns against ...

Researchers have released a report detailing how a recent WinRAR path traversal vulnerability tracked as CVE-2025-8088 was ...

The widely used file compression tool for Windows, WinRAR, has just released version 7.13 to address a severe security vulnerability identified ...

ESET warns that at least two Russian hacking groups are using the zero-day flaw in WinRAR for cyberespionage purposes.

Iconic archiving platform WinRAR carried a dangerous zero-day vulnerability which could have let hackers plant malware on ...

ESET has discovered CVE-2025-8088, a zero-day path traversal vulnerability in WinRAR exploited by the Russia-aligned RomCom group in targeted spe ...

If you use WinRAR or other affected components such as the Windows versions of its command line utilities, UnRAR.dll, or the ...

A newly discovered vulnerability in WinRAR has been exploited in the wild by the Russia-aligned cyber group RomCom. According ...

WinRAR patched CVE-2025-8088, a zero-day exploited by Russia RomCom in attacks on financial, defense, manufacturing and ...

ESET Research discover a zero-day vulnerability in WinRAR being exploited in the wild in the guise of job application ...

A security vulnerability in WinRAR allows malicious code to be executed. It is already under attack in the wild.