7-Zip News Articles

7-Zip CVE-2025-11001: NHS Alert on PoC RCE Flaw

Explore 7-Zip CVE-2025-11001, a symbolic link RCE vulnerability with a public PoC, with NHS guidance on impact, investigation, and detection.

2 weeks ago

Critical 7 Zip Vulnerability With Public Exploit Requires Manual Update

A vulnerability has been found in the very popular, free file-compressing tool 7-Zip. The flaw, tracked as CVE-2025-11001, has a public exploit, leading to a high-risk warning from the UK’s NHS England...

2 weeks ago

Hackers Exploit 7-Zip Symbolic Link RCE Vulnerability (CVE-2025-11001)

A significant security vulnerability has been identified in 7-Zip, a widely used file compression tool. This flaw allows remote attackers to execute arbitrary code by exploiting symbolic links within ZIP files. Details of the Vulnerability Designated as CVE-2025-11001, this vulnerability has been ra...

3 weeks ago

Cybersecurity News Today: Hackers Exploit 7-Zip Flaw, Urgent Patch Advised

In the latest cybersecurity news today, security experts have warned users about an actively exploited vulnerability in 7-Zip, one of the world’s most popular

3 weeks ago

Critical 7-Zip Vulnerability CVE-2025-11001 Target Users

CVE-2025-11001 affects 7-Zip <25.00, allowing remote code execution.

3 weeks ago

Let the hunt begin! Critical 7-Zip bug puts millions of users at risk.

A critical remote code execution vulnerability has been discovered in 7-Zip. Millions of users are exposed to malware infections and system compromise.

3 weeks ago

Let the hunt begin! Critical 7-Zip bug puts millions of users at risk.

A critical remote code execution vulnerability has been discovered in 7-Zip. Millions of users are exposed to malware infections and system compromise.

3 weeks ago

7-Zip RCE Vulnerability Actively Exploited by Hackers in the Wild

The flaw, tracked as CVE-2025-11001, poses serious risks as attackers are leveraging it to execute malicious code remotely on vulnerable systems.

3 weeks ago

7-Zip RCE Vulnerability Actively Exploited by Hackers

Researchers have reported active exploitation of a critical vulnerability in 7-Zip, the popular file compression software used by millions worldwide.

3 weeks ago

Recent 7-Zip Vulnerability Exploited in Attacks

Threat actors are exploiting a recently patched 7-Zip vulnerability that leads to remote code execution (RCE), NHS England warns.

3 weeks ago

Recent 7-Zip Vulnerability Exploited in Attacks

Threat actors are exploiting a recently patched 7-Zip vulnerability that leads to remote code execution (RCE), NHS England warns.

3 weeks ago

7-Zip RCE flaw (CVE-2025-11001) actively exploited in attacks in the wild

A remote code execution vulnerability, tracked as CVE-2025-11001, in the 7-Zip software is under active exploitation.

3 weeks ago

Hackers Actively Exploiting 7-Zip RCE Vulnerability in the Wild

Hackers have begun actively exploiting a critical remote code execution (RCE) vulnerability in the popular file archiver 7-Zip, putting millions of users at risk of malware infection and system compromise.

3 weeks ago

Hackers Actively Exploiting 7-Zip Symbolic Link–Based RCE Vulnerability (CVE-2025-11001)

Active exploitation targets 7-Zip CVE-2025-11001; patch 25.00 fixes symbolic link RCE flaws.

3 weeks ago

7-Zip vulnerability is being actively exploited, NHS England warns (CVE-2025-11001) - Help Net Security

NHS England Digital has issued a warning about a 7-Zip vulnerability (CVE-2025-11001) being exploited by attackers.

3 weeks ago

Online PoC for 7-Zip flaws: Exploit allows arbitrary code execution

Critical vulnerabilities discovered in 7-Zip that allow arbitrary code execution via malicious ZIP files. An immediate update is required.

PoC Exploit for 7-Zip Vulnerabilities that Allows Remote Code Execution

A proof-of-concept exploit for two critical vulnerabilities in the popular file archiver 7-Zip, potentially allowing attackers to execute arbitrary code remotely through malicious ZIP files.

CVE-2025-11001 and CVE-2025-11002 Vulnerabilities: Critical Flaws in 7-Zip Enable Remote Code Execution | SOC Prime

Explore CVE-2025-11001 and CVE-2025-11002 overview, critical vulnerabilities in 7-Zip leading to RCE, with details in the SOC Prime blog.

7-Zip Vulnerabilities Let Attackers Execute Arbitrary Code Remotely

Two high-severity vulnerabilities have been discovered in the popular open-source file archiver, 7-Zip, which could allow remote attackers to execute arbitrary code.

Russian SmokeLoader Campaign in Ukraine Uses 7-Zip Zero-Day

Russian hackers targeting Ukrainian government agencies and businesses - including a major automotive manufacturer - have been targeting a zero-day vulnerability in

CISA Adds Five Known Exploited Vulnerabilities to Catalog | CISA

CISA has added five vulnerabilities to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation. CVE-2025-0411(link is external) 7-Zip Mark of the Web Bypass...

Week in review: Exploited 7-Zip 0-day flaw, crypto-stealing malware found on App Store, Google Play - Help Net Security

Here’s an overview of some of last week’s most interesting news, articles, interviews and videos: Russian cybercrooks exploiting 7-Zip zero-day

7-Zip 0-Day Flaw Added to CISA’s List of Actively Exploited Vulnerabilities

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added a critical 0-day vulnerability affecting the popular file compression utility.

7-Zip Vulnerability Actively Exploited in The Wild in Attacks - CISA Adds Its Catalog

A critical vulnerability in the popular file archiving tool 7-Zip (CVE-2025-0411) has been actively exploited in the wild/

7-Zip 0-day was exploited in Russia’s ongoing invasion of Ukraine

Vulnerability stripped MotW tag Windows uses to flag Internet-downloaded files.

7-Zip MotW bypass exploited in zero-day attacks against Ukraine

A 7-Zip vulnerability allowing attackers to bypass the Mark of the Web (MotW) Windows security feature was exploited by Russian hackers as a zero-day since September 2024.

Russian cybercrooks exploiting 7-Zip zero-day vulnerability (CVE-2025-0411) - Help Net Security

CVE-2025-0411, a MotW bypass vulnerability in 7-Zip, has been exploited in zero-day attacks to deliver malware to Ukrainian entities.

Russian Cybercrime Groups Exploiting 7-Zip Flaw to Bypass Windows MotW Protections

7-Zip CVE-2025-0411 bypasses MotW to deliver SmokeLoader malware via phishing, targeting Ukraine.

CVE-2025-0411: Ukrainian Organisations Targeted in Zero-Day Campaign and Homoglyph Attacks

The ZDI team offers an analysis of how CVE-2025-0411, a zero-day vulnerability in 7-Zip was actively exploited to target Ukrainian organisations through spear-phishing and homoglyph attacks.

CVE-2025-0411: Ukrainian Organisations Targeted in Zero-Day Campaign and Homoglyph Attacks

The ZDI team offers an analysis of how CVE-2025-0411, a zero-day vulnerability in 7-Zip was actively exploited to target Ukrainian organisations through spear-phishing and homoglyph attacks.

CVE-2025-0411: Ukrainian Organizations Targeted in Zero-Day Campaign and Homoglyph Attacks

The ZDI team offers an analysis of how CVE-2025-0411, a zero-day vulnerability in 7-Zip was actively exploited to target Ukrainian organizations through spear-phishing and homoglyph attacks.

CVE-2025-0411: Ukrainian Organizations Targeted in Zero-Day Campaign and Homoglyph Attacks

The ZDI team offers an analysis of how CVE-2025-0411, a zero-day vulnerability in 7-Zip was actively exploited to target Ukrainian organizations through spear-phishing and homoglyph attacks.

CVE-2025-0411: Ukrainian Organisations Targeted in Zero-Day Campaign and Homoglyph Attacks

The ZDI team offers an analysis of how CVE-2025-0411, a zero-day vulnerability in 7-Zip was actively exploited to target Ukrainian organisations through spear-phishing and homoglyph attacks.

CVE-2025-0411 – vulnerability in 7-Zip

A vulnerability CVE-2025-0411 in the 7-Zip file archiver allows bypassing the Mark-of-the-Web (MOTW) mechanism.

PoC Exploit Released for 7-Zip Mark-of-the-Web Bypass Vulnerability

A Proof-of-Concept (PoC) exploit has been publicly released for a high-severity vulnerability in the popular file archiver 7-Zip.

CVE-2025-0411 impacts 7-Zip with Code Execution

Background of CVE-2025-0411 CVE-2025-0411 is a security flaw identified in 7-Zip, a widely-used open-source file archiver. This vulnerability allows attackers to execute arbitrary code by bypassing the "Mark-of-the-Web" (MOTW) security feature in Windows, which is designed to help protect users from...

7-Zip Vulnerability Let Remote Attackers Bypass Protections & Execute Arbitrary Code

A newly disclosed vulnerability in the popular file archiving software 7-Zip, identified as CVE-2025-0411, has raised significant security concerns.

WinRAR on Windows 11 gets faster, 7-Zip and NanaZip receive improvements too

WinRAR, 7-Zip and NanaZip have all received updates, which bring multiple improvements and bug fixes, including performance improvements.

Severe security vulnerability discovered in 7-Zip [CVE-2024-11477]

A severe security vulnerability has been discovered in 7-Zip, the popular file compression utility, allowing remote attackers to execute malicious code through specially crafted archives. The vulnerability...

7-Zip RCE Vulnerability Let Attackers Execute Remote Code

A critical security vulnerability has been disclosed in the popular file archiving tool 7-Zip, allowing attackers to execute arbitrary code remotely.