The broadly used file compression instrument for Home windows, WinRAR, has simply launched model 7.13 to deal with a extreme safety vulnerability recognized as CVE-2025-8088. This flaw, discovered by ESET security researchers, particularly impacts the Home windows model of WinRAR, concentrating on the UNRAR.dll library. The vulnerability permits attackers to craft malicious archive recordsdata that, when extracted by a person, trick WinRAR into writing recordsdata to a location of the attacker’s selecting as a substitute of the listing chosen by the person.
Exploitation of this vulnerability has been noticed within the wild, notably by means of phishing campaigns. Attackers have despatched emails containing specifically designed RAR archives that, when extracted, deposit executable recordsdata into delicate Home windows folders such because the Startup folder (%APPDATApercentMicrosoftWindowsStart MenuProgramsStartup). Any trojan horse positioned right here is routinely executed the subsequent time the system begins, leading to full compromise of the affected machine. This methodology permits attackers to realize persistent entry and probably execute additional malicious actions, together with putting in distant entry trojans (RATs).
The first malware linked to exploitation of this flaw is known as RomCom, a Distant Entry Trojan (RAT) related to cybercriminals identified for social engineering assaults. These attackers disguise their malware as respectable functions, encouraging customers to obtain and set up compromised WinRAR variations. RomCom has been noticed concentrating on organizations in varied sectors, and there may be proof connecting its exploitation of CVE-2025-8088 to Russian-linked teams. Earlier assaults enabled distant code execution, information exfiltration, and deployment of additional malware payloads.
It is very important word that Unix variations of RAR and UnRAR, together with the variations for Android, are usually not affected by this vulnerability. The safety difficulty is confined to Home windows customers, and solely these with the affected variations (previous to 7.13) are in danger.
In contrast to some trendy software program, WinRAR doesn’t function automated updates. Customers should go to the official WinRAR website and manually obtain and set up the newest model to be protected. Failure to improve leaves programs uncovered to lively threats.
Filed in . Learn extra about Security, Windows 10 and Windows 11.
Trending Merchandise
Wireless Keyboard and Mouse Combo, Lovaky 2.4G Full-Sized Ergonomic Keyboard Mouse, 3 DPI Adjustable Cordless USB Keyboard and Mouse, Quiet Click for Computer/Laptop/Windows/Mac (1 Pack, Black)
Acer KB272 EBI 27″ IPS Full HD (1920 x 1080) Zero-Body Gaming Workplace Monitor | AMD FreeSync Know-how | As much as 100Hz Refresh | 1ms (VRB) | Low Blue Mild | Tilt | HDMI & VGA Ports,Black
Acer Nitro KG241Y Sbiip 23.8â Full HD (1920 x 1080) VA Gaming Monitor | AMD FreeSync Premium Technology | 165Hz Refresh Rate | 1ms (VRB) | ZeroFrame Design | 1 x Display Port 1.2 & 2 x HDMI 2.0,Black
ASUS RT-AX55 AX1800 Twin Band WiFi 6 Gigabit Router, 802.11ax, Lifetime web safety, Parental Management, Mesh WiFi assist, MU-MIMO, OFDMA, 4 Gigabit LAN Ports, Beamforming
Samsung 32-Inch Odyssey G55C Collection QHD 1000R Curved Gaming Monitor, 1ms(MPRT), HDR10, 165Hz, AMD Radeon FreeSync, Eye Care, LS32CG550ENXZA, 2024
CORSAIR 6500X Mid-Tower ATX Twin Chamber PC Case – Panoramic Tempered Glass – Reverse Connection Motherboard Suitable – No Followers Included – Black
