建議儘快更新7-Zip，以避開漏洞CVE-2025-0411
 

7-Zip
https://www.developershome.com/7-zip/

【轉貼】針對去年11月修補的7-Zip高風險漏洞CVE-2025-0411，通報此事的漏洞懸賞專案Zero Day Initiative（ZDI）本週公布發現的過程，去年9月此漏洞被俄羅斯駭客用於攻擊行動，至少有9家烏克蘭企業組織與政府機關受害
文/周峻佑 | 2025-02-05發表
https://www.ithome.com.tw/news/167224

【轉貼】CVE-2025-0411: Ukrainian Organizations Targeted in Zero-Day Campaign and Homoglyph Attacks
The Trend ZDI team offers an analysis on how CVE-2025-0411, a zero-day vulnerability in 7-Zip, was actively exploited to target Ukrainian organizations in a SmokeLoader campaign involving homoglyph attacks.
By: Peter Girnus
February 04, 2025
https://www.trendmicro.com/zh_hk/re...s-targeted.html