WinRAR zero-day was exploited by two threat actors (CVE-2025-8088)

2025-08-12 15:08

The RomCom attackers aren’t the only ones that have been leveraging the newly unveiled WinRAR vulnerability (CVE-2025-8088) in zero-day attacks: according to Russian cybersecurity company BI.ZONE, a group tracked as Paper Werewolf has been using it to target Russian organizations. BI.ZONE researchers may have also uncovered how RomCom and Paper Werewolf got their hands on the same exploit: it looks like it may have been offered for sale on a cybercrime forum in late June … More →

The post WinRAR zero-day was exploited by two threat actors (CVE-2025-8088) appeared first on Help Net Security.

This article has been indexed from Help Net Security

Read the original article:

WinRAR zero-day was exploited by two threat actors (CVE-2025-8088)

← MITRE: Russian APT28’s LameHug, a Pilot for Future AI Cyber-Attacks

1Kosmos Raises $57 Million for Identity Verification and Authentication Platform →

Read the original article:

Post navigation