ESET warns that at least two Russian hacking groups are using the zero-day flaw in WinRAR for cyberespionage purposes.

ESET Research discover a zero-day vulnerability in WinRAR being exploited in the wild in the guise of job application ...

Researchers have released a report detailing how a recent WinRAR path traversal vulnerability tracked as CVE-2025-8088 was ...

If you use WinRAR or other affected components such as the Windows versions of its command line utilities, UnRAR.dll, or the ...

A high-severity zero-day in the widely used WinRAR file compressor is under active exploitation by two Russian cybercrime groups. The attacks backdoor computers that open malicious archives attached ...

Iconic archiving platform WinRAR carried a dangerous zero-day vulnerability which could have let hackers plant malware on ...

WinRAR patched CVE-2025-8088, a zero-day exploited by Russia RomCom in attacks on financial, defense, manufacturing and ...

Plus, RomCom isn't the only Russia-linked crew to abuse WinRAR holes. Fancy Bear, the GRU cyber-espionage crew, previously exploited CVE-2023-38831 for large-scale phishing campaigns against ...

The attacks used spearphishing campaigns to target financial, manufacturing, defense, and logistics companies in Europe and Canada.

A newly discovered vulnerability in WinRAR has been exploited in the wild by the Russia-aligned cyber group RomCom. According ...

The widely used file compression tool for Windows, WinRAR, has just released version 7.13 to address a severe security vulnerability identified ...

A security vulnerability in WinRAR allows malicious code to be executed. It is already under attack in the wild.