Earlier this week, security firm Trend Micro posted a security advisory (spotted by BleepingComputer) about a big vulnerability in 7-Zip, a popular file archiving utility app that’s used by millions around the world.
According to the advisory, the vulnerability — identified as CVE-2025-0411 — makes it possible for hackers to bypass the Mark of the Web (MotW) security feature in Windows and remotely execute code on your PC when extracting from a malware-loaded archive file.
Igor Pavlov, developer of 7-Zip, actually patched the flaw back in November 2024 with version 24.09. However, 7-Zip doesn’t have an automatic update feature, so many users are still using outdated versions of the app that are still vulnerable to this MotW exploit.
If you haven’t updated 7-Zip in a long time, do it now. Head over to the 7-Zip download page and get the latest version, which is 24.09 as of this writing. As long as you’re on that version or later, you’ll be okay.
Login to add comment
Other posts in this group
AI is driving new capabilities across creative apps, productivity too
Intel said Thursday that the company’s next big CPU bet, Panther Lake
Despite rumors of a major redesign for Apple’s TV streaming platform,
The top price of new video games is suddenly a hot topic, with many p
If you’re old enough to remember the original, brick-like Game Boy, y
Most often than not these days, laptops don’t come with enough ports
Home security cameras are easy to install, easy to use, and incredibl
