Windows 10 News and info | Forum
March 26, 2019, Loading... *
Welcome, Guest. Please login or register.

Login with username, password and session length
News: This is a clean Ad-free Forum and protected by StopForumSpam, Project Honeypot, Botscout and AbuseIPDB | This forum does not use audio ads, popups, or other annoyances. New member registration currently disabled.
 
  Website   Home   Windows 8 Website GDPR Help Login Register  
By continuing to use the site or forum, you agree to the use of cookies, find out more by reading our GDPR policy.
Pages: [1]
  Print  
Share this topic on Del.icio.usShare this topic on DiggShare this topic on FacebookShare this topic on GoogleShare this topic on MySpaceShare this topic on RedditShare this topic on StumbleUponShare this topic on TechnoratiShare this topic on TwitterShare this topic on YahooShare this topic on Google buzz
Author Topic: WinRAR has a critical bug which is getting exploited in the wild  (Read 10 times)
javajolt
Administrator
Hero Member
*****
Online Online

Gender: Male
United States United States

Posts: 29786


I Do Windows


WWW Email
« on: March 17, 2019, 01:34:09 PM »
ReplyReply



We have all used WinRAR at least once in our life and itís one of the most popular Windows file compression application. The software, however, has been hit with a critical bug which was first disclosed last month.

The vulnerability was discovered last year by security researchers from Check Point Software and it impacts all WinRAR versions released in the last 19 years. The good news is that WinRAR has released an update to patch the vulnerability. The bad news is that the vulnerability is being exploited in the wild. Since the WinRAR developers lost access to the UNACEV2.DLL library source code around 2005, they decided to drop support for ACE archive formats altogether.

However, that didnít help as users havenít updated the software to the latest versions and hackers have found a way to send malicious files embedded inside the archives. The researchers at Check Point Software demonstrated how a simple find extraction from WinRAR can create a malicious file inside the startup folder that gets executed every time the computer is restarted.



Seeing the opportunity, several hacker groups started using social engineering to send files to users. For instance, hackers started embedding malicious codes inside images to lure victims into extracting them.



Not only that, hackers targeted the South Korean government agencies just a day before the second Donald Trump and Kim Jong-un summit that took place in Vietnam. They even used UN human rights files to lure targets in the Middle East.



In a report published by McAfee yesterday, the company claims to have seen over ď100 unique exploits and countingĒ that used the WinRAR vulnerability to infect users. The safest thing anyone can do right now is to stay away from files that use ACE archive formats and downloaded the latest WinRAR 5.70 Beta 1 update from their website.

source
Logged



Pages: [1]
  Print  
 
Jump to:  

Powered by SMF 1.1.21 | SMF © 2017, Simple Machines

Google visited last this page March 20, 2019, 09:30:43 PM