WinRAR's Security Vulnerability Exploited by Russian and Chinese Hackers

October 18, 2023 at 03:03 PM

•

1 min read

WinRAR's Security Vulnerability Exploited by Russian and Chinese Hackers — Photo: TechCrunch

TL;DR Summary

Google security researchers have discovered evidence that government-backed hackers linked to Russia and China are exploiting a previously patched vulnerability in WinRAR, a popular archiving tool for Windows. The vulnerability, known as CVE-2023-38831, allows attackers to hide malicious scripts in archive files. Despite an updated version of WinRAR being released, multiple state-backed hacking groups, including Sandworm and Fancy Bear from Russia, and APT40 from China, have been observed exploiting the flaw in targeted phishing campaigns. The ongoing exploitation of this bug highlights the effectiveness of known vulnerability exploits due to slow patching rates.

Topics:top-news #china #cybersecurity #government-backed-hackers #russia #winrar #zero-day-vulnerability

Share this article

Russia and China-backed hackers are exploiting WinRAR zero-day bug TechCrunch
PSA: it's time to update WinRAR due to a big security vulnerability The Verge
Google links WinRAR exploitation to Russian, Chinese state hackers BleepingComputer
You Need to Update WinRAR, Right Now Gizmodo
WinRAR has a major security vulnerability, manually update now XDA Developers

Reading Insights

Total Reads

Unique Readers

Time Saved

2 min

vs 3 min read

Condensed

81%

490 → 93 words

Want the full story? Read the original article

Read on TechCrunch

JavaScript Required

tl;dr daily news requires JavaScript to be enabled. Please enable JavaScript in your browser settings.

Related Sources

Reading Insights