Two separate campaigns target CVE-2025-8088, fixed last July, to conduct data theft and cyberespionage against military and government targets in Ukraine.
Originally published at darkreading.com
SecurityAI-assisted1 min read
Russian Attackers Weaponize WinRAR Flaw Against Ukrainian Orgs
Russian threat actors are actively exploiting CVE-2025-8088, a WinRAR vulnerability patched in July, through two distinct campaigns targeting Ukrainian military and government organizations. The attacks focus on data exfiltration and cyberespionage operations, demonstrating continued targeting of critical Ukrainian infrastructure through known software vulnerabilities.
▸ Want a deeper look?
Talk to an architect about applying this to your stack.
60-minute technical evaluation, no obligation. We'll map the ideas in this article to your environment.
▸ Continue reading
