: Analysis from ThreatLocker highlights that attackers prefer tools like 7-Zip because they are often pre-approved in corporate environments, making it difficult for standard antivirus software to flag their use as malicious.

On February 4, 2025, researchers at Trend Micro published a blog post detailing how Russian-linked threat actors exploited a zero-day vulnerability in 7-Zip, identified as .

Other security-focused blog posts have explored the broader risks associated with archiving tools: