WinRAR vulnerability exploited by two different groups - Malwarebytes
Unmasking the Threat: The Rise of ENCCN Ransomware In the ever-evolving landscape of cybercrime, a new name has begun surfacing in security forums and incident reports: . Often delivered as a seemingly innocuous compressed file— ENCCN RANSOMWARE.rar —this malware is designed to lock users out of their most valuable data and demand a steep price for its return. What is ENCCN Ransomware? ENCCN RANSOMWARE.rar
: Recent trends show attackers leveraging zero-day vulnerabilities in tools like WinRAR (such as CVE-2025-8088 ) to execute code just by opening a malicious archive. WinRAR vulnerability exploited by two different groups -
Attackers behind ENCCN often use the file as a payload in several common attack vectors: time is of the essence:
If you discover .enccn extensions on your files or find the ransom note, time is of the essence:
