https://www.bleepingcomputer.com/news/security/winrar-zero-day-flaw-exploited-by-romcom-hackers-in-phishing-attacks/
WinRAR zero-day exploited to plant malware on archive extraction
A recently fixed WinRAR vulnerability tracked as CVE-2025-8088 was exploited as a zero-day in phishing attacks to install the RomCom malware.
zero day exploitedwinrarplant
https://tarnkappe.info/artikel/it-sicherheit/winrar-zero-day-fuer-phishing-angriffe-ausgenutzt-319329.html
WinRAR-Zero-Day für Phishing-Angriffe ausgenutzt
Aug 9, 2025 - WinRAR-Zero-Day-Lücke CVE-2025-8088: RomCom nutzt eine Schwachstelle für das Phishing – jetzt schnell auf Version 7.13 aktualisieren!
winrar zerophishing angriffe