: Security experts recommend updating 7-Zip to version 24.09 or later to patch this flaw. General 7z Security Context
While there is no single "official" blog post titled exactly "0NB.7z," recent threat intelligence reports and security blog posts from early 2025 detail a critical exploitation involving archives and a zero-day vulnerability. Security Vulnerability: CVE-2025-0411 0NB.7z
: The vulnerability was used to deploy the SmokeLoader malware, which functions as a loader for further cyberespionage tools. : Security experts recommend updating 7-Zip to version 24
: The campaign primarily targeted governmental and civilian organizations in Ukraine as part of the Russo-Ukrainian conflict. : The campaign primarily targeted governmental and civilian
: Attackers used compromised email accounts to send malicious archives. These attacks utilized homoglyph attacks , where visually similar characters are used to deceive users into opening malicious files.
On February 4, 2025, researchers at Trend Micro published a blog post detailing how Russian-linked threat actors exploited a zero-day vulnerability in 7-Zip, identified as .