Search
A recently discovered security vulnerability, CVE-2025-8088, in the WinRAR software enables attackers to craft malicious RAR files that, when unzipped by users, can embed malware. This vulnerability allows hackers to conceal DLL, EXE, and LNK files within the "alternate data streams" of compressed archives, facilitating the execution of malicious code and automatic startup upon system boot. Notably, hacker groups like RomCom have already capitalized on this flaw to disseminate malware, including Mythic Agent, SnipBot, and MeltingClaw.
WinRAR has addressed this vulnerability in version 7.13 and strongly recommends that users manually update to the latest version as soon as possible. As of now, there are no confirmed reports of user systems being compromised due to this vulnerability.
-
C114 Communication Network -
Communication Home
