CVE-2025-8088 - Geek Feed

Details emerge on WinRAR zero-day attacks that infected PCs with malware

August 15, 2025August 15, 2025 geekfeed0Tagged 0day, Actively Exploited, CVE-2025-8088, Path Traversal, RomCom, russia, vulnerability, WinRAR, Zero-Day

Researchers have released a report detailing how a recent WinRAR path traversal vulnerability tracked as CVE-2025-8088 was exploited in zero-day attacks by the Russian ‘RomCom’ hacking group to drop different malware payloads. RomCom (aka Storm-0978 and Tropical Scorpius) is a Russian cyberespionage threat group with a history in zero-day exploitation, including in Firefox (CVE-2024-9680, CVE-2024-49039) and Microsoft Office (CVE-2023-36884). ESET […]

4 mins read

WinRAR zero-day exploited to plant malware on archive extraction

August 12, 2025August 12, 2025 geekfeed0Tagged Actively Exploited, Archive, CVE-2025-8088, phishing, RomCom, WinRAR, Zero-Day, Zero-day Attack

A recently fixed WinRAR vulnerability tracked as CVE-2025-8088 was exploited as a zero-day in phishing attacks to install the RomCom malware. The flaw is a directory traversal vulnerability that was fixed in WinRAR 7.13, which allows specially crafted archives to extract files into a file path selected by the attacker. “When extracting a file, previous versions of WinRAR, […]

2 mins read