rarlab News Articles
Recent news articles refferecing the vendors vulnerabilities.
Information Security NewspaperCVE-2025-31334MotW Bypassed: Zero Warning, Full Control – New WinRAR Flaw Silently Bypasses Windows Security
MotW Bypassed: Zero Warning, Full Control – New WinRAR Flaw Silently Bypasses Windows Security - Vulnerabilities - Information Security Newspaper | Hacking News
Help Net SecurityCVE-2025-31334WinRAR MotW bypass flaw fixed, update ASAP (CVE-2025-31334) - Help Net Security
A flaw (CVE-2025-31334) allowing attackers to bypass Windows' MotW security warning and execute arbitrary code has been fixed in WinRAR 7.11.
WinRAR flaw bypasses Windows Mark of the Web security alerts
A vulnerability in the WinRAR file archiver solution could be exploited to bypass the Mark of the Web (MotW) security warning and execute arbitrary code on a Windows machine.
Russian researchers say espionage operation using WinRAR bug is linked to Ukraine
Moscow-based F.A.C.C.T. said it found what appears to be a Ukraine-based campaign exploiting a vulnerability that other cyber-espionage operations have leveraged elsewhere.
Russia and China-linked hackers exploit WinRAR bug
Hackers connected to the governments of Russia and China are allegedly using a vulnerability in a popular Windows tool to attack targets around the world, including in Ukraine and Papua New Guinea.
BumbleBee Malware Buzzes Back on the Scene After 4-Month Hiatus
Cyberattacks targeting thousands of US organizations wields a new attack vector to deliver the versatile initial-access loader — and is a harbinger of a surge in threat activity.
The Hacker NewsCVE-2023-38831Pro-Russian Hackers Exploiting Recent WinRAR Vulnerability in New Campaign
WinRAR users, be alert! Pro-Russian hackers exploited a recent vulnerability in the software. Ensure your version is updated!
The Hacker NewsCVE-2023-38831Experts Uncover DarkCasino: New Emerging APT Threat Exploiting WinRAR Flaw
DarkCasino: From Zero-Day Exploit to APT Threat! Cybersecurity experts classify DarkCasino as a powerful APT group after exploiting a WinRAR flaw
Security AffairsCVE-2023-38831Multiple APT groups exploited WinRAR flaw CVE-2023-38831
Google TAG reported that both Russia and China-linked threat actors are weaponizing the a high-severity vulnerability in WinRAR.
The Hacker NewsCVE-2023-38831Google TAG Detects State-Backed Threat Actors Exploiting WinRAR Flaw
Google TAG security experts uncover Russian and Chinese state-backed threat actors exploiting WinRAR vulnerability (CVE-2023-38831)
Help Net SecurityCVE-2023-38831State-sponsored APTs are leveraging WinRAR bug - Help Net Security
A number of government-backed APTs are exploiting CVE-2023-38831, a file extension spoofing vulnerability in WinRAR.
Google links WinRAR exploitation to Russian, Chinese state hackers
Google says that several state-backed hacking groups have joined ongoing attacks exploiting a high-severity vulnerability in WinRAR, a compression software used by over 500 million users, aiming to gain arbitrary code execution on targets' systems.
Help Net SecurityCVE-2023-38831Attackers exploited WinRAR zero-day for months to steal money from brokers (CVE-2023-38831) - Help Net Security
Financially-motivated attackers have exploited a zero-day vulnerability in WinRAR (CVE-2023-38831) to trick traders into installing malware.
Government-backed actors exploiting WinRAR vulnerability
Google's Threat Analysis Group analyzes recent state-sponsored campaigns exploiting the WinRAR vulnerability, CVE-2023-38831.
Help Net SecurityCVE-2023-40477Fake WinRAR PoC spread VenomRAT malware - Help Net Security
An threat actor has released a fake PoC exploit for a recently fixed RCE vulnerability in WinRAR to spread the VenomRAT malware.
The Hacker NewsCVE-2023-38831WinRAR Security Flaw Exploited in Zero-Day Attacks to Target Traders
The recent WinRAR vulnerability was exploited as a zero-day since April to compromise traders' devices and withdraw money.
WinRAR zero-day exploited since April to hack trading accounts
A WinRar zero-day vulnerability tracked as CVE-2023-38831 was actively exploited to install malware when clicking on harmless files in an archive, allowing the hackers to breach online cryptocurrency trading accounts.
Help Net SecurityCVE-2023-40477WinRAR vulnerable to remote code execution, patch now! (CVE-2023-40477) - Help Net Security
RARLAB has fixed a high-severity RCE vulnerability (CVE-2023-40477) in WinRAR, a widely used file archiver for Windows.