A critical directory traversal vulnerability in WinRAR (CVE-2025-8088) was exploited as a zero-day by Russian-aligned RomCom hackers to deploy malware via phishing campaigns. The flaw allowed attackers to hijack extraction paths and achieve persistent remote code execution. All WinRAR users must manually update to version 7.13 immediately.