WinRAR Patches Zero-Day Vulnerability Enabling Hackers to Breach Crypto and Stock Trading Accounts
Summary:
WinRAR has addressed a zero-day vulnerability that enabled hackers to install malware on targeted devices, providing unauthorized access to crypto and stock trading accounts. The vulnerability, identified by Group-IB, allowed hackers to exploit ZIP file processing for approximately four months. Malicious RAR and ZIP archives were distributed on trading forums, impacting at least 130 devices. The extent of financial losses remains unknown. WinRAR released a patch in version 6.23 to address the issue.
The developers of WinRAR, a popular file compression software, have released a patch for a zero-day vulnerability that allowed hackers to install malware on users' computers. The vulnerability, identified by Singapore-based cybersecurity firm Group-IB, was found in the processing of ZIP files by WinRAR. The exploit, known as CVE-2023-38831, was used by hackers for about four months to install malware when victims clicked on files within an archive. The malware then provided access to online crypto and stock trading accounts. Hackers created malicious RAR and ZIP archives disguised as innocent files, which were distributed on trading forums targeting crypto traders. Once executed, the malware allowed hackers to withdraw money from broker accounts. This vulnerability has been exploited since April 2023. At least eight public trading forums were infected, affecting 130 devices, but the extent of financial losses is unknown. The researchers notified RARLABS, who released a patch in WinRAR version 6.23 on Aug. 2.
Published At
8/25/2023 4:43:36 AM
Disclaimer: Algoine does not endorse any content or product on this page. Readers should conduct their own research before taking any actions related to the asset, company, or any information in this article and assume full responsibility for their decisions. This article should not be considered as investment advice. Our news is prepared with AI support.
Do you suspect this content may be misleading, incomplete, or inappropriate in any way, requiring modification or removal?
We appreciate your report.