The Hacker News

GootLoader Malware Uses 500–1,000 Concatenated ZIP Archives to Evade Detection

GootLoader malware is abusing malformed ZIP archives that bypass common tools like WinRAR & deliver JavaScript payloads via ...
MUO on MSN

WinRAR feels ancient once you switch to this modern open-source alternative

Once you go out of WinRAR and try something else, you would immediately notice how dated the tool has been. This realization hit me when I switched to a modern open-source alternative that made me ...
heise online

WinRAR: Code smuggling vulnerability is being attacked

A security vulnerability in the WinRAR compression program, present until version 7.12 Beta 1, allows attackers to inject malicious code. Attacks exploiting this vulnerability have now been observed.
TechRepublic

WinRAR Zero-Day Exploited by Russian-Linked Hackers RomCom and Paper Werewolf

WinRAR Zero-Day Exploited by Russian-Linked Hackers RomCom and Paper Werewolf Your email has been sent Cybersecurity researchers have identified an actively exploited flaw in WinRAR that attackers are ...
Techzim

Dear Zimbo, Hackers Found a Way into your PC Through WinRAR, Fix it Now

WinRAR, that little app many of us installed years ago to “just open that one file”, has been compromised by hackers. This time, it’s not the usual “update available” situation. There’s a flaw so bad ...
HotHardware

WinRAR, Which You Totally Paid For, Was Under Siege By Zero-Day Attacks

Everyone's favorite file archiving utility isn't often in the news, but today is an exception. The WinRAR archiving utility has been the target of a couple of large-scale attacks that leverage a 0-day ...
PC Gamer

Still using WinRAR? It might be time for an update, as a zero-day vulnerability is being 'exploited in the wild in the guise of job application documents'

When you purchase through links on our site, we may earn an affiliate commission. Here’s how it works. There's something about the WinRAR stacked-book logo that makes me all nostalgic, giving me a ...
BGR

Update This Popular Windows Tool To Avoid Potential Malware Attacks

One incredibly popular Windows tools has recently been updated to address a zero-day exploit that could give bad actors a chance to install malware on devices running older versions of the app. The ...
Ars Technica

High-severity WinRAR 0-day exploited for weeks by 2 groups

A high-severity zero-day in the widely used WinRAR file compressor is under active exploitation by two Russian cybercrime groups. The attacks backdoor computers that open malicious archives attached ...
TechRadar

WinRAR has a serious security flaw - worrying zero-day issue lets hackers plant malware, so patch right away

ESET found a high-severity bug in WinRAR being used by RomCom, a known Russian hacking collective The bug was being used to deploy backdoors allowing full access to compromised computers WinRAR says ...
WeLiveSecurity

Update WinRAR tools now: RomCom and others exploiting zero-day vulnerability

ESET Research discovered a zero-day vulnerability in WinRAR being exploited in the wild in the guise of job application documents; the weaponized archives exploited a path traversal flaw to compromise ...