The article details UNC6201 exploiting a zero-day vulnerability in Dell RecoverPoint for Virtual Machines, but the provided NVD data is for a different, unrelated vulnerability: CVE-2025-8088, a critical WinRAR flaw with a CVSS score of 8.8. Affected versions are WinRAR prior to 7.13 and dtSearch prior to 2023.01, with fixes available in those respective versions.
2026-02-17 (Back to Inventory) From BRICKSTORM to GRIMBOLT: UNC6201 Exploiting a Dell RecoverPoint for Virtual Machines Zero-Day Author(s): Daniel Sislo , Fernando Tomlinson , John Scarbrough , Jr. , Nick Harbour , PETER UKHANOV , Rich Reece Organization: Google elf.brickstorm elf.grimbolt jar.slaystyle Open article directly Open article on Archive.org Related Articles 2026-01-30 ⋅ Google ⋅ Mandiant Vishing for Access: Tracking the Expansion of ShinyHunters-Branded SaaS Data Theft UNC6671 2026-01-28 ⋅ Google ⋅ Google Threat Intelligence Group No Place Like Home Network: Disrupting the World's Largest Residential Proxy Network 2026-01-27 ⋅ Google ⋅ Google Threat Intelligence Group Diverse Threat Actors Exploiting Critical WinRAR Vulnerability CVE-2025-8088