Helpnetsecurity
Amaranth-Dragon Exploits WinRAR Vulnerability Against Southeast Asian Governments
First seen 5 Feb 2026, 18:32 UTC
•



+6
•76% similarity
•32.3
Share:
Export
Ask AI about this cluster
Analyzing cluster data...
Referenced clusters:
Something went wrong. Please try again.
Cluster AI
Ask questions about this threat cluster with AI-powered analysis.
Get Researcher $29.99/moArticle Content
Browse articles
The cyber threat group Amaranth-Dragon has leveraged a critical vulnerability in WinRAR, identified as CVE-2025-8088, to gain persistent control over systems belonging to Southeast Asian governments. This exploitation follows the vulnerability's addition to the CISA KEV list, indicating active exploitation in the wild.
ThreatCluster AI