18 March 2019

Do you use WinRAR zipping tool? Better update now - to close this security vulnerability

After being a staple on PCs for so many years, last month it was discovered that WinRAR, software used to open .zip archive files, has been vulnerable for the last 19 years to a bug that’s easily exploited by hackers and malware distributors. Fortunately, the software has been patched with the recent release of version 5.70, but after being unchecked for so long and installed by so many people, a new wave of malware is taking advantage.

Check Point, the security researchers that revealed the WinRAR bug, explain that the software is exploited by giving malicious files a RAR extension, so that when opened they can automatically extract malware programs. These programs are installed in a PC’s startup folder, allowing them to start running anytime the computer is turned on, all without the user’s knowledge.

So: if you use WinRAR - check what version you are using. If anything less than v5.70 - then go here - download the latest version & install the update. Or better still, do what Donline does: use 7-Zip.

No comments:

Post a Comment