{"uuid": "5d531c32-26ee-4283-aee7-11537624fa9e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-8088", "type": "seen", "source": "https://threatintel.cc/2026/06/09/russian-attackers-weaponize-winrar-flaw.html", "content": "Russian Attackers Weaponize WinRAR Flaw Against Ukraine\n\nRussia-aligned threat actors are actively exploiting a patched WinRAR vulnerability, CVE-2025-8088, to conduct cyber espionage and credential theft against Ukrainian government and military organizations. Because WinRAR lacks native auto-update features, many unpatched systems remain vulnerable to these phishing-based attacks that leverage malicious archives to execute arbitrary code.", "creation_timestamp": "2026-06-09T17:30:12.000000Z"}