Two different threat actors, including a Russia-aligned cyber-espionage group, exploited vulnerabilities in the popular WinRAR file-archiving software this summer, researchers have found. Slovak cybersecurity firm ESET said in a report on Monday that Russia-aligned RomCom, also tracked as Storm-0978, was the first to exploit a newly discovered flaw in WinRAR, tracked as CVE-2025-8088. The vulnerability, which allows attackers to execute code on a victim’s system after getting them to open a malicious archive file, was patched on July 24 — just six days after ESET discovered it.
Two groups exploit WinRAR flaws in separate cyber-espionage campaigns (Daryna Antoniuk – The Record)
Related articles
