Russian APTs Still Exploiting Patched WinRAR Flaw CVE-2025-8088

Russian APTs Still Exploiting Patched WinRAR Flaw CVE-2025-8088

News
Yanac

Despite a 2025 patch, Russian-linked groups still exploit a WinRAR flaw (CVE-2025-8088) to deploy malware via phishing archives. CVE-2025-8088 is a path traversal flaw in WinRAR that lets an attacker write files outside the extraction directory using NTFS Alternate Data Streams. WinRAR fixed it in version 7.13 in July 2025. Nearly a year later, TrendSecurity AffairsRead More