Yahoo Finance

Hackers exploit WinRAR zero-day bug to steal funds from broker accounts

Cybercriminals are exploiting a zero-day vulnerability in WinRAR, the venerable shareware archiving tool for Windows, to target traders and steal funds. Cybersecurity company Group-IB discovered the ...
Yahoo Finance

14-Year-Old WinRAR Exploit Allegedly Threatens Crypto Wallets

According to a user on the Bitcoin subreddit, there is an exploit on a common version of WinRAR that enables the potential theft of coins. The bug, which allowed executable code to be inserted on a ...
ZDNet

Microsoft: WinRAR exploit gives attackers 'full control' of Windows PC

Microsoft has detailed a March attack on Windows customers in the satellite and communications sectors using "unusual, interesting techniques" that bear the hallmarks of APT group MuddyWater. The ...
Android

APT29 exploits WinRAR with phony BMW ad to diplomats

APT29, a Russian-backed hacking group known as CozyBear, has launched its latest cyber-attack, this time using a fake BMW advertisement that exploits a WinRAR vulnerability known as CVE-2023-38831.
Bleeping Computer

JNEC.a Ransomware Spread by WinRAR Ace Exploit

A new ransomware called JNEC.a spreads through an exploit for the recently reported code execution ACE vulnerability in WinRAR. After encrypting a computer, it will generate a Gmail address that ...
ZDNet

'100 unique exploits and counting' for latest WinRAR security bug

A vulnerability that impacts all the WinRAR versions released in the last 19 years has become the go-to exploit for many malware distributors over the course of the last month. Several campaigns have ...