A critical vulnerability in the WinRAR file-compression utility is under active attack by a wide range of bad actors who are exploiting the code-execution flaw to install password stealers and other types of malicious software. In one campaign, according to a report published by researchers from security firm McAfee, attackers are spreading files that purport to contain stolen data. One file, titled leaks copy.rar, contains email addresses and passwords that were supposedly compromised in a breach. Attackers claim another file, cc.rar, contains stolen credit card data. Other files have names including zabugor.rar, ZabugorV.rar, Combolist.rar, Nulled2019.rar, and IT.rar. Hidden inside the files are payloads from a variety of different malware families. They include a keylogger known as QuasarRat and malware containing Chinese language text known as Buzy. The McAfee report identified three other campaigns, including: One that impersonates an educational accreditation body that seems to use a PDF letter copied from the website of the Council on Social Work Education as a decoy. When extracted, the RAR file plants a Visual Basic script in the computer’s startup folder. The script causes the computer to install a remote-access trojan called Netwire. An attack targeting the Israeli military industry that uses decoy files… Read full this story
- Zuckerberg admits social media is a weapon, says Facebook in 'arms race' against 'bad actors'
- Ex-Facebook Boss Says It's ‘Too Late’ to Protect 2018 Midterms from ‘Bad Actors’
- Kaspersky Lab technology detects a zero-day exploit for Microsoft Windows
- Who is Neil Morrissey? Unforgotten actor and Men Behaving Badly star who appeared in Pilgrimage: The Road To Santiago
- F-35 Program Officials Covering Up Life-Threatening Flaws in Aircraft
- Pentagon hiding ‘life-threatening’ F-35 design flaws to meet deadline – watchdog
- Republicans: time for ‘irretrievably flawed’ RHI to be axed
- Who is Mikey North? Actor playing Gary Windass in Coronation Street who appeared in Waterloo Road
- 5 paintings you need to see at the Courtauld Gallery before it closes
- Pope in Ireland: McAleese focus on Church's flaws praised
A rogue’s gallery of bad actors are exploiting that critical WinRAR flaw have 338 words, post on arstechnica.com at March 27, 2019. This is cached page on Technology Breaking News. If you want remove this page, please contact us.