> TritonInfoSec News
Home / Jun 10, 2026 / Story
0
#7 The Hacker News general June 09, 2026 at 12:26 UTC

WinRAR Flaw Exploited by Russia-Aligned Groups to Deploy Stealers in Ukraine

By [email protected] (The Hacker News)

AI Summary

Russia-aligned threat actors Earth Dahu (Gamaredon) and SHADOW-EARTH-066 (UAC-0226) are actively exploiting CVE-2025-8088, a WinRAR path traversal flaw patched in July 2025, in ongoing campaigns targeting Ukrainian military and government organizations. Trend Micro attributes the attacks to data theft and cyberespionage objectives, demonstrating that patched vulnerabilities remain effective against organizations slow to update.

Read full article → https://thehackernews.com/2026/06/winrar-flaw-expl…

Relevance score: 85.0/100

# More from June 10

  1. 1
    A Record-Breaking Patch Tuesday for June 2026 Krebs on Security
  2. 2
    Microsoft June 2026 Patch Tuesday fixes 3 zero-day, 200 flaws BleepingComputer
  3. 3
    Check Point VPN Zero-Day Exploited in Qilin Ransomware Attacks SecurityWeek
  4. 4
    Chrome V8 Zero-Day CVE-2026-11645 Exploited in the Wild - Patch Now The Hacker News
  5. 5
    Veeam Backup & Replication RCE Flaw Lets Domain Users Run Remote Code The Hacker News
  6. 6
    Microsoft Restores Some GitHub Repos, Keeps Others Offline as Miasma Probe Continues The Hacker News
  7. 8
    ServiceNow discloses security incident exposing customer data BleepingComputer
  8. 9
    Researchers Build Self-Replicating AI Worm That Operates Entirely on Local, Open-Weight Models The Hacker News
  9. 10
    Cisco customers encounter another SD-WAN zero-day under attack CyberScoop