Critical vulnerability in WinRAR archiver could harm cryptocurrency owners

Journalist Colin Wu warned digital asset owners about the potential risk of losing money. The issue is a vulnerability in the popular WinRAR archiver.

«The problem arises from the lack of proper validation of user data when processing volumes for recovery. This can lead to malicious access to memory outside of the allocated buffer,» the vulnerability bulletin says.

The discovered bug allowed attackers to remotely run malicious code on a working system if the user opened a specially created RAR archive.

«Cryptocurrency owners are advised to be careful with updates and financial risks, and to remember that the WinRAR Vulnerability Detection Tool may be a malicious phishing program,» Colin Wu emphasized.

It should be noted that the vulnerability was first discovered on June 8. The updated version of the program has completely fixed it.

As a reminder, in addition to imperceptibly placing malicious viruses in archives, hackers have learned how to mine cryptocurrencies in the background of pirated versions of Apple’s video services. Once installed, the malware secretly mines cryptocurrency using infected gadgets. Security analysts emphasized that the software is not always detectable.