WinRAR Zero-Day Under Active Exploitation – Update to Latest Version Immediately

Blog

Byadmblake August 11, 2025

The maintainers of the WinRAR file archiving utility have released an update to address an actively exploited zero-day vulnerability. Tracked as CVE-2025-8088 (CVSS score: 8.8), the issue has been described as a case of path traversal affecting the Windows version of the tool that could be exploited to obtain arbitrary code execution by crafting malicious…

The maintainers of the WinRAR file archiving utility have released an update to address an actively exploited zero-day vulnerability.
Tracked as CVE-2025-8088 (CVSS score: 8.8), the issue has been described as a case of path traversal affecting the Windows version of the tool that could be exploited to obtain arbitrary code execution by crafting malicious archive files.
“When extracting a file,

Blog

Why CISOs Must Align Business Objectives & Cybersecurity

This alignment makes a successful CISO, but creating the same sentiment across business leadership creates a culture of commitment and greatly contributes to achieving goals.

Read More Why CISOs Must Align Business Objectives & Cybersecurity
Blog

Marks & Spencer Projects $400M Loss After Cyberattack

The company expects it will continue to struggle with online disruptions until at least July, due to the attack.

Read More Marks & Spencer Projects $400M Loss After Cyberattack
Blog

WhatsApp Adds Advanced Chat Privacy to Blocks Chat Exports and Auto-Downloads

WhatsApp has introduced an extra layer of privacy called Advanced Chat Privacy that allows users to block participants from sharing the contents of a conversation in traditional chats and groups. “This new setting available in both chats and groups helps prevent others from taking content outside of WhatsApp for when you may want extra privacy,”…

Read More WhatsApp Adds Advanced Chat Privacy to Blocks Chat Exports and Auto-Downloads
Blog

Indian Police Arrest Cybercrime Gang Copycats of Myanmar Biz Model

The region offers attractive conditions: a large pool of tech workers, economic disparity, and weak enforcement of cybercrime laws — all of which attract businesses legitimate and shady.

Read More Indian Police Arrest Cybercrime Gang Copycats of Myanmar Biz Model
Blog

CISA is Shrinking: What Does it Mean for Cyber?

Dark Reading Confidential Episode 7: Cyber experts Tom Parker and Jake Williams offer their views on the practical impact of cuts to the US Cybersecurity and Infrastructure Security Agency.

Read More CISA is Shrinking: What Does it Mean for Cyber?
Blog

Companies Look to AI to Tame the Chaos of Event Security, Operations

As the summer event season kicks off, venue managers and security firms aim to make AI part of the solution for keeping control of crowds and protecting against cyber-physical threats.

Read More Companies Look to AI to Tame the Chaos of Event Security, Operations

Related