Mastodawn

#Gamaredon Uses #WinRAR Vulnerability to Launch Modular Spy Campaign on Ukrainian Targets
https://securityaffairs.com/193112/intelligence/gamaredon-uses-winrar-vulnerability-to-launch-modular-spy-campaign-on-ukrainian-targets.html
#securityaffairs #hacking #Russia

Gamaredon Uses WinRAR Vulnerability to Launch Modular Spy Campaign on Ukrainian Targets

Gamaredon exploits a WinRAR flaw to drop modular, nearly fileless malware on Ukrainian targets, hiding payloads in Windows streams.

Security Affairs

(in)sicurezza digitale 2d ago

Gamaredon sfrutta CVE-2025-8088 in WinRAR per distribuire GammaWorm e GammaSteel contro l’Ucraina

Sekoia documenta una campagna di gennaio 2026 del gruppo APT russo Gamaredon: sfruttando CVE-2025-8088 in WinRAR, gli operatori dell'FSB distribuiscono GammaPhish, GammaLoad, GammaWorm e GammaSteel contro target governativi e militari ucraini. La catena usa Telegram come dead drop resolver per il C2 e NTFS Alternate Data Streams per l'evasione, con esfiltrazione finale verso AWS S3.

https://insicurezzadigitale.com/gamaredon-sfrutta-cve-2025-8088-in-winrar-per-distribuire-gammaworm-e-gammasteel-contro-lucraina/

Andrew Armstrong 2d ago

SCCM WQL Collection Query for All WinRAR Installations | https://techygeekshome.info/sccm-wql-collection-query-for-all-winrar-installations/?fsp_sid=34159 | #Microsoft #refresh #SCCM #SQL #WinRAR #WQL
https://techygeekshome.info/sccm-wql-collection-query-for-all-winrar-installations/?fsp_sid=34159

Analyst207 2d ago

Gamaredon Exploits WinRAR Flaw to Deliver GammaWorm, GammaSteel Malware

Cyber attackers have cleverly exploited a WinRAR flaw to unleash a potent malware duo, GammaWorm and GammaSteel, with the goal of taking control of infected systems and executing malicious scripts. This sneaky tactic, spotted by French cybersecurity firm Sekoia, allows hackers to fingerprint host systems, manipulate network settings, and…

https://osintsights.com/gamaredon-exploits-winrar-flaw-to-deliver-gammaworm-gammasteel-malware?utm_source=mastodon&utm_medium=social

#Gamaredon #Winrar #Cve20258088 #Gammaworm #Gammasteel

Gamaredon Exploits WinRAR Flaw to Deliver GammaWorm, GammaSteel Malware

Learn how Gamaredon exploits WinRAR flaw CVE-2025-8088 to deliver GammaWorm malware and protect your system now with expert security tips and advice.

OSINTSights

Analyst207 4d ago

FSB-Linked Worm Exploits Windows Flaw to Evade Detection

Cyber attackers have cleverly exploited a known Windows flaw, CVE-2025-8088, to sneak a malicious payload into victims' systems, allowing them to gain access and lay the groundwork for further attacks. This stealthy move was uncovered by Sekoia, which tracked the initial access stage as GammaPhish.

https://osintsights.com/fsb-linked-worm-exploits-windows-flaw-to-evade-detection?utm_source=mastodon&utm_medium=social

#WindowsFlaw #Cve20258088 #Winrar #Gammaphish #Gammaworm

FSB-Linked Worm Exploits Windows Flaw to Evade Detection

Learn how the FSB-linked Worm exploits Windows flaws via CVE-2025-8088 to evade detection. Discover the infection chain and protect your system now effectively.

OSINTSights