[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"branding":3,"analytics":7,"article-russian-apt-groups-weaponize-old-winrar-bug-against-ukrainian-targets":10},{"siteName":4,"siteTagline":5,"publisherName":4,"contactEmail":6},"The Revision","Tech news, decoded.","editor@therevision.news",{"gaMeasurementId":8,"adsenseClientId":9},"G-ZW2MV82GYR","ca-pub-8533917693782264",{"article":11},{"id":12,"slug":13,"title":14,"dek":15,"body_md":16,"tags_json":17,"published_at":18,"created_at":19,"updated_at":20,"status":21,"review_note":22,"review_notes":23,"image_url":24,"persona_id":22,"persona_name":22,"section":22,"tags":25,"sources":29,"feedback":33,"feedback_at":22,"cost_usd":33,"total_tokens":33},484,"russian-apt-groups-weaponize-old-winrar-bug-against-ukrainian-targets","Russian APT groups weaponize old WinRAR bug against Ukrainian targets","Trend Micro reports two state-linked groups are exploiting the patched CVE‑2025‑8088 flaw to steal credentials from Ukraine’s government and military systems.","Russian hackers are using a WinRAR vulnerability that was fixed almost a year ago.\n\nTrend Micro’s research shows two Russian state‑linked APT groups have been exploiting CVE‑2025‑8088, a path‑traversal bug rated 8.4 CVSS. The flaw lets them plant credential‑stealing malware on machines running the archived archive tool. Targets include Ukrainian government agencies and military units, and the attacks have been ongoing since the patch was released.\n\nThe reuse of an old, well‑known flaw highlights how quickly attackers can turn neglected updates into active weapons. It also underscores the difficulty Ukrainian defenders face when adversaries recycle known exploits rather than waiting for zero‑day surprises.\n\nWhen a patch is ignored, the risk isn’t theoretical—it becomes a door that nation‑state actors are more than willing to walk through.","[\"russia\",\"ukraine\",\"cybersecurity\"]","2026-06-09T18:42:13.000Z","2026-06-09T19:30:32.559Z","2026-06-10T00:18:58.487Z","published",null,[],"https:\u002F\u002Fcdn.xyz.onl\u002Farticle-images\u002Frussian-apt-groups-weaponize-old-winrar-bug-against-ukrainian-targets.webp",[26,27,28],"russia","ukraine","cybersecurity",[30],{"name":31,"url":32},"The Next Web","https:\u002F\u002Fthenextweb.com\u002Fnews\u002Fwinrar-flaw-gamaredon-russia-ukraine-cve-2025-8088",0]