Hackers Start Exploiting Serious WinRAR Flaw to Spread Malware

If you’re running an old version of WinRAR, it’s a good time to patch. Hackers appear to be exploiting a serious bug in the file utility software by spreading secretly rigged file archives that install malware on people’s PCs.

WinRAR users need to watch out. Hackers are starting to exploit a newly disclosed bug in the file-archiving tool to secretly install malware on Windows PCs.

Chinese security firm Qihoo 360 has uncovered several file archive samples that exploit the WinRAR vulnerability to deliver malware to a victim’s computer. One of the attacks was sent over email.

The first sample was detected only two days after the WinRAR bug was publicly disclosed by a separate security firm, Check Point. The bug is particularly problematic because WinRAR claims to have over 500 million users. A hacker can exploit the vulnerability to craft seemingly benign RAR archive files that are actually malicious.

According to Qihoo 360’s research division, one of the samples it uncovered is a file archive containing pictures of attractive women. “In order to trigger the vulnerability, attackers put inside lots of image files and lure the victim to decompress the archive,” the researchers said in their report.

Leave a Reply

Your email address will not be published. Required fields are marked *