Furthermore,
Winrar needs emergency update:
The Winrar compression tool contains a safety flaw. Nevertheless, This allows hackers to access any directory of an attacked computer. For example, Vulnerability has become known due to computer attacks already carried out from Russia.
Anyone who uses the Winrar tool should be updated as soon as possible. For example, The older versions of the compression software – up to version 7.12, which was current in July – are indeed vulnerable due to a recently made public flaw.
The origin of the problem was discovered by the supplier of cybersecurity ESET. Meanwhile, According to the company, it was alerted to this vulnerability when a group of hackers tried to exploit it.
Infected application files from Russia – Winrar needs emergency update
During the attack. For example, cybercriminals sent an email containing alleged candidacy documents, with the aim that a member of the HR service of the Viewed company opens the winrar needs emergency update attachment. In reality, according to the press release, the message contained a rar file infected with malware. The “MSEDGE.DLL” file concealed inside included unusual paths, explains ESET. It is an exploited zero-day flaw (CVE-2025-8088), a vulnerability of the “Path Traversal” type. In this type of attack. attackers seek to access files and directories located outside the directories allocated to the application, the company specifies.
According to ESET. the attack was perpetrated by Romcom, a group of Russian hackers also known as Storm-0978, Tropical Scorpius or UNC2596. The tactics. techniques, malicious procedures and software used during this attack resemble those already observed in previous operations carried out by this group, underline the cybersecurity experts.
The hackers lead both attacks against specific sectors and targeted spy operations, the press release said. As part of the campaign observed in July. the group attacked companies from the financial, manufacturing, armament and logistics sectors in winrar needs emergency update Europe and Canada.
“By exploiting a Zero-Day security fault hitherto unknown in Winrar. the Romcom group has shown that it was investing considerable efforts and resources in its cyber operations,” comments Peter Strýček, researcher at ESET. “The discovery campaign aimed at sectors that correspond to the typical interests of the Russian orientation AP groups. This suggests a geopolitical motivation behind the operation. ”
Further reading: Cyberattacks target a Microsoft service, the FBI – [MAJ 2] Subnautica 2 Pet the Eau – Unknown Worlds, Krafton – News – Google loses its call against Epic Games and must reform its mobile application store – Sold at nearly 300 euros, Internet users are tearing this iPhone 14 Apple at Cdiscount – 3 sensational offers to discover on the official store.
