Summary: A recently exploited vulnerability in 7-Zip allows Russian hackers to bypass the Mark of the Web (MotW) security feature, enabling malware execution without warning. This flaw, tracked as CVE-2025-0411, has been used in targeted campaigns against Ukrainian organizations since September 2024. Researchers recommend updating to the latest 7-Zip version to mitigate risks associated with this vulnerability.
Affected: 7-Zip Users, Ukrainian Government and Organizations
Keypoints :
- Vulnerability CVE-2025-0411 exploited by hackers to bypass the MotW security feature.
- Malicious files were delivered through phishing emails with double archived files to execute malware stealthily.
- Users are urged to update to 7-Zip version 24.09 or later to protect against the issues stemming from this flaw.