The Hacker News

RomCom Uses SocGholish Fake Update Attacks to Deliver Mythic Agent Malware

RomCom just hit a US engineering firm via SocGholish for the first time, deploying Mythic Agent before defenders cut the ...
Bleeping Computer

WinRAR zero-day exploited to plant malware on archive extraction

A recently fixed WinRAR vulnerability tracked as CVE-2025-8088 was exploited as a zero-day in phishing attacks to install the RomCom malware. The flaw is a directory traversal vulnerability that was ...
Hosted on MSN

Russian 'RomCom' Hackers Exploit WinRAR Flaw Via Phishing Emails

Russian hackers appear to be using a new flaw in WinRAR to try and spread malware to companies in Europe and Canada, according to security researchers. Antivirus provider ESET today provided more ...
Morningstar

ESET Research: Russian RomCom group exploits new vulnerability, targets companies in Europe and Canada

If you use WinRAR or other affected components such as the Windows versions of its command line utilities, UnRAR.dll, or the portable UnRAR source code, upgrade immediately to the latest version. ESET ...