Old WinRAR Flaw Fuels Attacks on Ukraine: How Unmanaged Software Keeps the Door Open

Two Russia-aligned campaigns continue exploiting CVE-2025-8088, a WinRAR path traversal vulnerability patched in July 2025, against Ukrainian organizations through April 2026. SHADOW-EARTH-066 deploys an evolved GIFTEDCROOK information stealer using in-memory DLL loading via direct NT system calls, harvesting browser credentials, session cookies, and documents across 35 file extensions before self-deleting. Earth Dahu employs an HTA-based infection chain delivering espionage modules through Cloudflare Workers infrastructure. Both campaigns leverage the same CVE-2025-8088 exploit but use distinct tooling: SHADOW-EARTH-066 relies on compiled C++ with RC4-encrypted C&C communication, while Earth Dahu uses script-based approaches with Dynamic DNS. The persistent exploitation nearly a year post-patch demonstrates how unmanaged software lacking centralized update mechanisms creates enduring attack surfaces that threat actors deliberately target.

Pulse ID: 6a2699c6a6badcc8eac21083
Pulse Link: https://otx.alienvault.com/pulse/6a2699c6a6badcc8eac21083
Pulse Author: AlienVault
Created: 2026-06-08 10:30:30

Be advised, this data is unverified and should be considered preliminary. Always do further verification.

#Browser #CandC #Cloud #Cookies #CyberSecurity #DNS #ELF #Espionage #InfoSec #OTX #OpenThreatExchange #RAT #Russia #SMS #UK #Ukr #Ukraine #Ukrainian #Vulnerability #WinRAR #bot #AlienVault

Smart Contracts for C&C: How ClearFake Hid in Plain Sight on BSC Testnet

Pulse ID: 6a1ff48f519a80c0b86c0280
Pulse Link: https://otx.alienvault.com/pulse/6a1ff48f519a80c0b86c0280
Pulse Author: Tr1sa111
Created: 2026-06-03 09:31:59

Be advised, this data is unverified and should be considered preliminary. Always do further verification.

#CandC #ClearFake #CyberSecurity #InfoSec #OTX #OpenThreatExchange #bot #Tr1sa111

Smart Contracts for C&C: How ClearFake Hid in Plain Sight on BSC Testnet

Threat actors exploited the EtherHiding technique to store ClearFake payload routing instructions within smart contracts on the BNB Smart Chain testnet, creating an immutable command-and-control infrastructure that cannot be taken down. The attack began with injected JavaScript on a compromised Swiss website that queried blockchain contracts to deliver malicious payloads. Victims passing anti-analysis checks were fingerprinted by operating system and routed to platform-specific ClickFix social engineering overlays. The campaign simultaneously deployed SectopRAT, a .NET-based remote access trojan capable of browser session hijacking, and ACRStealer, a C++ infostealer targeting credentials and cryptocurrency wallets. An on-chain execution tracker confirmed each compromise in real time. Four smart contracts shared a single deployer wallet, with the oldest deployed nearly a year before analysis, indicating a long-running, actively maintained operation.

Pulse ID: 6a15ba2632bd7e246e9c1250
Pulse Link: https://otx.alienvault.com/pulse/6a15ba2632bd7e246e9c1250
Pulse Author: AlienVault
Created: 2026-05-26 15:20:06

Be advised, this data is unverified and should be considered preliminary. Always do further verification.

#BlockChain #Browser #CandC #ClearFake #CyberSecurity #EtherHiding #InfoSec #InfoStealer #Java #JavaScript #NET #OTX #OpenThreatExchange #RAT #RemoteAccessTrojan #SocialEngineering #Trojan #bot #cryptocurrency #AlienVault

TONIGHT!
Join us for a Pub Night of C and C++ horror stories. Share your funniest and most frustrating experiences from the world of systems programming with others who understand the struggle.
 
Open to all experience levels.
Come for the laughs, stay for the community and conversation.
 
📆 Thursday, May 21, 2026
🕦 7-9 PM
📍Loose Goose Downtown (126 Ouellette Ave, Windsor, ON)
🎟️ RSVP atwww.hackf.org/events

#CandC++  #WindsorTech #WindsorEvents

Let's all take a moment to celebrate this underappreciated masterpiece.

#videogames #rts #commandandconquer #candc #kanelives!

Uuh, EA open sourced some of it‘s iconic Command & Conquer games.

#EA #CommandAndConquer #CAndC #OpenSource #GitHub #Games #GameDev #IndieGameDev #Gameing

#ArethaFraklin
#Clivilles' & #Cole
#ADeeperLove
#CandC

(B2 A Deeper Feeling Mix)

https://www.youtube.com/watch?v=8gIo_NmCYcU&list=RDQMjFVykNKVffQ&start_radio=1

Finished the #ShadowsOfTheHalflingHall #CastelsAndCrusades #CAndC adventure last night with my group.

I'm still really pleased with the game. Most of the players appreciate the simple resolution mechanic and how fast we can move through things.

I also came to realize that I tend to run most of my #TTRPG sessions much more old school than I initially realize.

I like to give them puzzles with no clear or set resolution and watch them come up with the cleverest solutions then let them make some rolls. They get so excited and it's a lot of work and planning off of my shoulders.

#OSR #GMLife