Nearly a year after a critical vulnerability was patched, advanced threat actors continue exploiting WinRAR to compromise targets across Ukraine. The flaw, tracked as CVE-2025-8088 (CVSS 8.4), allows attackers to bypass security warnings and silently install malware on a victim’s machine. Russia-aligned groups, including SHADOW-EARTH-066 and Earth Dahu, have integrated this exploit into their attack […]
The post Hackers Abuse WinRAR NTFS Alternate Data Streams to Drop Malware via RAR Archives appeared first on Cyber Security News.