Google warns of hacking by hackers from Russia and China using WinRAR
30.01.26
Google has warned that a known critical vulnerability, CVE-2025-8088, in the popular WinRAR archiver for Windows is still being actively exploited by hackers linked to Russia and China. The vulnerability was discovered in July last year and added to the National Vulnerability Database in August.
WinRAR fixed the problem in the 7.13 update released on July 30, but users of older versions remain at risk. The exploit works via Alternate Data Stream (ADS): a malicious file is hidden in a fake file inside the archive. After unpacking, it gets into critical system folders, including Windows Startup, and automatically runs when the system reboots.
Google notes that among the attackers are Russian hacking groups attacking the Ukrainian army, Chinese groups distributing the POISONIVY malware via BAT files, as well as cybercriminals focused on financial gain. The latter, according to the company, are actively targeting the hotel and tourism sectors using phishing emails with infected archives.
Experts emphasize that the situation with CVE-2025-8088 is a prime example of so-called n-day vulnerabilities – when patches are already available, but a significant part of users do not install the update, remaining vulnerable to attacks.
Google recommends that all users immediately update WinRAR to version 7.13 and avoid opening archives in older versions of the program to minimize the risk of infection.
Don't miss interesting news
Subscribe to our channels and read announcements of high-tech news, tes
Oppo A6 Pro smartphone review: ambitious
Creating new mid-range smartphones is no easy task. Manufacturers have to balance performance, camera capabilities, displays, and the overall cost impact of each component. How the new Oppo A6 Pro balances these factors is discussed in our review.
Logitech MX Keys S Combo wireless keyboard and mouse set review: tactile hi-end
The Logitech MX Keys S Combo combines a top-of-the-line mouse, keyboard, and palm rest, providing good ergonomics, build quality, and extensive functionality when working with multiple devices
Xiaomi Wireless Mouse 4 Pro: an ergonomic novelty with a smart wheel for $30
Xiaomi has expanded its line of peripheral devices by announcing the Wireless Mouse 4 Pro wireless mouse
AI hasn’t hindered hiring: mployers who invest in neural networks are more active in hiring junior
Despite fears of AI displacing humans, companies with the biggest AI investments show hiring growth


