Security teams are urging users to take immediate action following the disclosure of significant security vulnerabilities impacting widely used software and network devices.
A persistent backdoor targeting SOHO (small office/home office) Linux-based devices has been identified. This malware, dubbed ‘B themselves’, establishes persistent access on compromised routers and network attached storage (NAS) devices. It allows attackers to maintain a foothold and execute arbitrary commands, posing a serious risk to home and small business networks. Users of SOHO devices are strongly advised to check for and apply any available firmware updates from their manufacturers immediately to remove the backdoor and prevent future infections.
Separately, a critical Remote Code Execution (RCE) vulnerability has been discovered and patched in the popular file archiver WinRAR. The flaw, tracked as CVE-2023-40477, could allow an attacker to execute arbitrary code on a victim’s system simply by convincing them to open a specially crafted RAR archive. This vulnerability affects versions of WinRAR prior to 6.23. Given the widespread use of WinRAR, the potential impact is significant. All WinRAR users are strongly recommended to update to the latest version (6.23 or later) without delay to protect themselves from potential exploitation.
Staying on top of these critical updates is essential for maintaining digital security in today’s threat landscape. Prompt patching is the most effective defense against these newly disclosed risks.
Source: https://www.helpnetsecurity.com/2025/06/29/week-in-review-backdoor-found-in-soho-devices-running-linux-high-risk-winrar-rce-flaw-patched/
