WinRAR, that little app many of us installed years ago to “just open that one file”, has been compromised by hackers. This time, it’s not the usual “update available” situation. There’s a flaw so bad ...

Russian-linked hacking groups are exploiting a critical zero-day vulnerability in the popular WinRAR file compression utility, putting millions of users at risk. The flaw, identified as CVE-2025-8088, ...

Two Russian cybercrime groups have been exploiting a high-severity zero-day in the widely used WinRAR file compressor, cybersecurity firm ESET has found. Researchers first spotted the attacks on July ...

A recent WinRAR path traversal vulnerability tracked as CVE-2025-8088 was exploited in zero-day attacks by the Russian ‘RomCom’ hacking group to drop different malware payloads. RomCom (aka Storm-0978 ...

A high-severity zero-day in the widely used WinRAR file compressor is under active exploitation by two Russian cybercrime groups. The attacks backdoor computers that open malicious archives attached ...

Russia-linked attackers found and exploited a high-severity WinRAR vulnerability before the maintainers of the Windows file archiver issued a fix. The bug, tracked as CVE-2025-8088, is a ...

When you purchase through links on our site, we may earn an affiliate commission. Here’s how it works. ESET found a high-severity bug in WinRAR being used by RomCom, a known Russian hacking collective ...

ESET Research discovered a zero-day vulnerability in WinRAR being exploited in the wild in the guise of job application documents; the weaponized archives exploited a path traversal flaw to compromise ...

A newly discovered zero-day vulnerability in WinRAR, tracked as CVE-2025-8088, has been patched following reports of active exploitation in the wild. The flaw, with a CVSS severity score of 8.8, ...

A newly discovered vulnerability in WinRAR has been exploited in the wild by the Russia-aligned cyber group RomCom. According to an advisory published by ESET researchers earlier today, the flaw, ...