Back to v.scour's feed

Russian APTs Still Exploiting Patched WinRAR Flaw CVE-2025-8088 (opens in new tab)  🔒Security

securityaffairs.com··Covered by malware.news + 1 more·Open original (opens in new tab)

Despite a 2025 patch, Russian-linked groups still exploit a WinRAR flaw (CVE-2025-8088) to deploy malware via phishing archives. CVE-2025-8088 is a path traversal flaw in WinRAR that lets an attacker write files outside the extraction directory using NTFS Alternate Data Streams. WinRAR fixed it in version 7.13 in July 2025. Nearly a year later, Trend […]

Read the original article
Sign in to keep reading the full article.
Sign UpLog In

Cited by 2 articles

15th June – Threat Intelligence Report

malware.news·

15th June – Threat Intelligence Report

research.checkpoint.com·

Keyboard Shortcuts

Navigation

Next / previous item
j/k
Open post
oorEnter
Preview post
v

Post Actions

Love post
a
Like post
l
Dislike post
d
Undo reaction
u
Save / unsave
s

Recommendations

Add interest / feed
Enter
Not interested
x

Go to

Home
gh
Interests
gi
Feeds
gf
Likes
gl
History
gy
Changelog
gc
Settings
gs
Browse
gb
Search
/

General

Show this help
?
Submit feedback
!
Close modal / unfocus
Esc

Press ? anytime to show this help