WinRAR Flaw Exploited in Targeted Cyberespionage Campaign

A Russia-linked hacking group, RomCom, exploited a WinRAR zero-day vulnerability (CVE-2025-8088) to launch cyberespionage attacks on organizations across Europe and Canada. The flaw allowed attackers to manipulate archive extraction paths, delivering malicious payloads via spearphishing emails. Although no compromises were reported, the attack targeted key sectors including finance and defense. The vulnerability was patched shortly after its discovery by cybersecurity firm ESET.

Read more:

https://www.securityweek.com/russian-hackers-exploited-winrar-zero-day-in-attacks-on-europe-canada/