Two Russian APT groups are exploiting a WinRAR flaw patched nearly a year ago to hit Ukraine

https://media.thenextweb.com/2026/06/winrar-flaw-gamaredon-russia-ukraine-cve-2025-8088.avif

TL;DR

Two FSB-linked groups exploit a WinRAR bug patched in July 2025 to steal Ukrainian credentials. The patch exists but adoption remains slow.

Two Russian state-linked hacking groups are actively exploiting a path traversal vulnerability in WinRAR that was patched nearly a year ago, using it to deploy credential-stealing malware against Ukrainian government and military targets, according to research published by Trend Micro. The flaw, tracked as CVE-2025-8088 and rated 8.4 on the CVSS scale, allows attackers to abuse NTFS Alternate Data Streams to hide malicious payloads inside archive files that appear harmless to the recipient. The patch shipped in WinRAR 7.13 on 30 July 2025, but active exploitation began at least 12 days earlier, and the two groups are still using it because WinRAR remains deeply embedded in Ukrainian organisations and update adoption has been slow.

Gamaredon, the FSB-linked group that Trend Micro tracks as Earth Dahu, is using...

Copyright of this story solely belongs to thenextweb.com. To see the full text click HERE

Read more

https://assets.bwbx.io/images/users/iqjWHBFdfxIU/i632N0SXDl84/v0/1200x800.jpg

Micron breaks ground on its ~$9.3B Hiroshima factory expansion, part of its global ramp-up to meet AI demand, and plans to start HBM shipments from summer 2028

Sponsor Posts Fast, affordable law for startups — Soxton automates startup legal so founders can move faster and sleep better. We handle incorporation, advisor, employment and commercial contracts. Join the waitlist for early access! Stop vibe coding analytics — Equals AI turns questions about your business into auditable spreadsheet models and dashboards.

https://technode.global/wp-content/uploads/2026/07/dconstruct-scaled.webp

Singapore-based dConstruct Robotics, which develops spatial tech to let autonomous robots operate in complex, GPS-denied environments, raised a $125M Series A

Sponsor Posts Fast, affordable law for startups — Soxton automates startup legal so founders can move faster and sleep better. We handle incorporation, advisor, employment and commercial contracts. Join the waitlist for early access! Stop vibe coding analytics — Equals AI turns questions about your business into auditable spreadsheet models and dashboards.