Google warns of hacking by hackers from Russia and China using WinRAR
30.01.26
Google has warned that a known critical vulnerability, CVE-2025-8088, in the popular WinRAR archiver for Windows is still being actively exploited by hackers linked to Russia and China. The vulnerability was discovered in July last year and added to the National Vulnerability Database in August.
WinRAR fixed the problem in the 7.13 update released on July 30, but users of older versions remain at risk. The exploit works via Alternate Data Stream (ADS): a malicious file is hidden in a fake file inside the archive. After unpacking, it gets into critical system folders, including Windows Startup, and automatically runs when the system reboots.
Google notes that among the attackers are Russian hacking groups attacking the Ukrainian army, Chinese groups distributing the POISONIVY malware via BAT files, as well as cybercriminals focused on financial gain. The latter, according to the company, are actively targeting the hotel and tourism sectors using phishing emails with infected archives.
Experts emphasize that the situation with CVE-2025-8088 is a prime example of so-called n-day vulnerabilities – when patches are already available, but a significant part of users do not install the update, remaining vulnerable to attacks.
Google recommends that all users immediately update WinRAR to version 7.13 and avoid opening archives in older versions of the program to minimize the risk of infection.
Don't miss interesting news
Subscribe to our channels and read announcements of high-tech news, tes
Oppo A6 Pro smartphone review: ambitious
0 
Creating new mid-range smartphones is no easy task. Manufacturers have to balance performance, camera capabilities, displays, and the overall cost impact of each component. How the new Oppo A6 Pro balances these factors is discussed in our review.
Home autonomous power sources: inverters, batteries, solar panels
0 
Let’s try to figure out how to choose the right inverter depending on the load power, sine wave type, and battery system configuration.
Google warns of hacking by hackers from Russia and China using WinRAR Google hacker Security
Google has warned that the known critical vulnerability CVE-2025-8088 in the popular WinRAR archiver for Windows is still actively used by hackers
Razer will allow to configure devices via a browser browser Razer
Razer has introduced a web version of its Synapse tool, which allows you to configure peripherals directly in the browser without installing a separate program.