Phishing attacks exploit WinRAR flaw CVE-2025-8088 to install RomCom

Forum|Forum|3 months ago
August 9, 2025
1 reply
67 views

+54

Jasper_The_Rasper
Moderator

August 9, 2025 By Pierluigi Paganini

WinRAR flaw CVE-2025-8088, fixed in v7.13, was exploited as a zero-day in phishing attacks to install RomCom malware.

The WinRAR flaw CVE-2025-8088, a directory traversal bug fixed in version 7.13, was exploited as a zero-day in phishing attacks to deliver RomCom malware, Bleeping Computer first reported.

The flaw is a path traversal vulnerability affecting the Windows version of WinRAR. Attackers can exploit the vulnerability to execute arbitrary code by crafting malicious archive files. Researchers Anton Cherepanov, Peter Košinár, and Peter Strýček from ESET disclosed the flaw.

Attackers can craft archives that place executables in Windows Startup folders, causing them to run at login and enabling remote code execution

>>Full Article<<

+63

TripleHelix
Moderator
Forum|Forum|3 months ago
August 10, 2025

I got it installed! 😎

Daniel - Microsoft MVP Consumer Security (2012-2016) Windows 10 Pro x64 for Workstations 22H2 on my Alienware 17R2 and Windows 11 Pro x64 for Workstations on my Alienware 17R5 Laptops with Webroot SecureAnywhere Complete Beta Tester for PC & Android Samsung Galaxy A16 5G OS 16.

Like

WinRAR flaw CVE-2025-8088, fixed in v7.13, was exploited as a zero-day in phishing attacks to install RomCom malware.

Sign up

Login to the community

Scanning file for viruses.

This file cannot be downloaded