Google on Tuesday revealed that multiple threat actors, including nation-state adversaries and financially motivated groups, are exploiting a now-patched critical security flaw in RARLAB WinRAR to establish initial access and deploy a diverse array of payloads.
„Discovered and patched in July 2025, government-backed threat actors linked to Russia and China as well as financially motivated
https://thehackernews.com/2026/01/google-warns-of-active-exploitation-of.html