<ul><li>Russian cybercriminals are actively exploiting a recently patched security flaw in the 7-Zip archiver to deploy the SmokeLoader malware.</li><li>The vulnerability (CVE-2025-0411) allows malicious code execution and bypasses Windows' Mark-of-the-Web protections.</li><li>Attackers disguise file extensions using homoglyph techniques, leading to the execution of malicious payloads.</li><li>At least nine Ukrainian government entities, including the Ministry of Justice and City Council, have been affected.</li></ul>

Russian Cybercriminals exploit 7-Zip flaw to deploy SmokeLoader Malware

Discover more