: Malicious RAR files are currently being used to exploit CVE-2025-8088 , a path traversal bug that allows attackers to execute code just by having a user extract the archive.
for any unexpected invocations of the unrar utility or startup folder changes. D1082.rar
immediately to version 7.13 or later . Older versions (7.12 and below) are vulnerable to these automated execution attacks. : Malicious RAR files are currently being used
: Actors like the RomCom group (UNC4895) have been using spearphishing emails with "booby-trapped" archives to target financial, defense, and logistics companies. Older versions (7
: Similar RAR files have been identified delivering information stealers and banking trojans (like DCRat ) that are often advertised on Russian-language dark web forums. Recommended Actions
, especially if it was received via an unsolicited email or downloaded from a suspicious site.
If you have encountered this file, it is highly recommended to: