Russian Attackers Weaponize WinRAR Flaw Against Ukrainian Orgs

Tuesday, June 9, 2026 at 03:37 PM UTC·Source: Dark Reading

Updated: Tuesday, June 9, 2026 at 04:00 PM UTC

Executive Summary

Two separate campaigns target CVE-2025-8088, fixed last July, to conduct data theft and cyberespionage against military and government targets in Ukraine.

Analysis

Two separate campaigns target CVE-2025-8088, fixed last July, to conduct data theft and cyberespionage against military and government targets in Ukraine.

Indicators of Compromise (1)

CVE (1)

CVE-2025-8088

NVD MITRE CVE

Source Attribution

Originally published by Dark Reading on Jun 9, 2026.

Related Threats

MEDIUMApt

Russian national charged in connection with Void Blizzard espionage campaign

Denis Obrezko accused of orchestrating cyberattacks that compromised at least 11 U.S. companies as part of the Kremlin-linked group's sprawling espionage operation.\ The post Russian national charged in connection with Void Blizzard espionage campaign appeared first on CyberScoop .

3h agoCyberScoop

MEDIUMApt

Hacker linked to Void Blizzard faces charges over cyberespionage campaign

Denis Obrezko, 36, made his initial appearance in federal court in Boston on Tuesday after being transferred to U.S. custody from Thailand, where he was arrested last November.

5h agoThe Record

MEDIUMApt

Enhanced License Plate Tracking

The surveillance company Leonardo wants more data : A surveillance company plans to add sensors to automatic license plate readers (ALPRs) that would mean the devices, as well as capture the license plate of passing vehicles, would also sweep up unique identifiers of mobile phones, wearables, and other Bluetooth-enabled devices in those cars, potentially letting law enforcement identify specific d

9h agoSchneier on Security