Multiple State-Sponsored Groups Exploit WinRAR Vulnerability in Phishing Attacks

Threat Level – Red | Vulnerability Report
Download PDF

A series of phishing attacks linked to a Russian state-sponsored group, leveraging a WinRAR vulnerability to steal data, including browser credentials via PowerShell commands and exfiltrating it through a legitimate service.

What’s new on HivePro

Get through updates and upcoming events, and more directly in your inbox