19-Year-Old WinRAR Bug Being Used To Install Malware

WinRAR

You won malware!

WinRAR, the file archive program, has been around for a long time. And, recently, a bug that’s been there all along has not only been found, but exploited to install malware on the PC’s of unsuspecting users. McAfee has already identified over 100 such exploits; their example being a bootleg copy of Ariana Grande’s new album Thank U, Next.

Per Check Point, hackers rename an ACE file with a RAR extension, which lets them manipulate WinRAR to extract a malicious program to the computer’s startup folder. The program runs when the computer is next restarted, with the user none the wiser.

As to how many users have been affected, that’s hard to say. WinRAR has patched the problem, though, so as long as you are at version 5.70 or above, you’re good. Also, you have choices other than WinRAR nowadays. That said, it’s still a super popular program with millions of users, so please, get yourself checked.

Source: Engadget

About Author

B. Simmons

Based out of Glendale California, Bryan is a GAMbIT's resident gaming contributor. Specializing in PC and portable gaming, you can find Bryan on his 3DS playing Monster Hunter or at one of the various conventions throughout the state.

Learn More →