SecurityThe Hacker Newsabout 3 hours ago

WinRAR Flaw Exploited by Russia Groups in Ukraine

1 min read

Two Russia-aligned groups, Earth Dahu and SHADOW-EARTH-066, exploit CVE-2025-8088 in WinRAR to target Ukrainian organizations nearly a year after the patch. The flaw uses NTFS Alternate Data Streams to deploy the GIFTEDCROOK stealer, which harvests browser passwords and documents via crafted RAR archives.

Level

Hype check

Tap to vote and see what everyone thinks.

#cybersecurity #winrar #ukraine

Read full story

More to chew on!

Securityabout 19 hours ago

Check Point VPN Flaw Exploited Since Early May

Securityabout 21 hours ago

Qilin exploited Check Point VPN zero-day before patch

Security