Week in Review: Two threat actors take advantage of a WinRAR zero-day vulnerability, while Microsoft addresses the “BadSuccessor” Kerberos flaw to enhance security.

Last week’s cybersecurity landscape was marked by significant developments, including the exploitation of a zero-day vulnerability in WinRAR (CVE-2025-8088) by two threat actors. The RomCom group was not alone in leveraging this vulnerability; the Russian cybersecurity firm BI.ZONE reported that a group known as Paper Werewolf has also targeted Russian organisations using this flaw. Additionally, Microsoft addressed over 100 security vulnerabilities during its August 2025 Patch Tuesday, notably fixing a relative path traversal flaw in Windows Kerberos (CVE-2025-53779) that could allow an authorised attacker to elevate privileges in a BadSuccessor attack.

In an interview with Help Net Security, Amy Herzog, the Chief Information Security Officer at AWS, elaborated on how cloud-native security can scale with business needs, providing flexible protection that aligns with cloud development. Meanwhile, two vulnerabilities (CVE-2025-8875, CVE-2025-8876) in N-central, a remote monitoring and management solution popular among managed service providers, have been actively exploited by attackers. Robert Buljevic, a Technology Consultant at Bridge IT, discussed the challenges posed by the coexistence of legacy systems and Software as a Service (SaaS) applications in enterprise security. The Ruđer Bošković Institute, Croatia’s largest science and technology research institute, confirmed it was among the “at least 9,000 institutions worldwide” affected by ransomware attacks exploiting Microsoft SharePoint ToolShell vulnerabilities. Furthermore, Warren O’Driscoll from NTT DATA UK and Ireland highlighted how military leadership training prepares veterans for success in cybersecurity. Lastly, a surge in brute-force attacks targeting Fortinet SSL VPNs raised concerns about potential undisclosed vulnerabilities, prompting Fortinet to issue warnings regarding a vulnerability in FortiSIEM. 

Categories: Cybersecurity Vulnerabilities, Cloud Security, Ransomware Attacks 

Tags: WinRAR, Zero-Day, Vulnerability, Microsoft, Kerberos, Cloud-Native, RMM, Ransomware, Cybersecurity, Fortinet