PSA: it’s time to update WinRAR due to a big security vulnerability – Trending News

PSA: it’s time to update WinRAR due to a big security vulnerability

Attackers are exploiting a security vulnerability in WinRAR that lets them execute arbitrary code. It’s time to update your install of WinRAR immediately.

Google TAG Detects State-Backed Threat Actors Exploiting WinRAR Flaw

A number of state-back threat actors from Russia and China have been observed exploiting a recent security flaw in the WinRAR archiver tool for Windows as part of their operations.

Google links WinRAR exploitation to Russian, Chinese state hackers

Why you must immediately update WinRAR tool on your computers

Users of the popular file archiver tool WinRAR are being urged to update to the latest version due to a critical security vulnerability. Google’s Threat Analysis Group has identified the vulnerability, which has been exploited by multiple government-backed groups since early 2023. The vulnerability, known as CVE-2023-38831, allows attackers to execute a code when a Windows user opens a file within a ZIP archive. Previous vulnerabilities in WinRAR have also been exploited by hackers.

You Need to Update WinRAR, Right Now

Government-backed hackers from Russia and China exploited a known vulnerability in outdated versions of WinRAR, the world’s most popular compression tool with over 500 million users. Google’s Threat Analysis Group (TAG) said Wednesday it observed a number of government-backed hacking campaigns utilizing the WinRAR bug starting in early 2023.

Paying for WinRAR in all the wrong ways – Russia and China hitting ancient app