WinRAR regards a netizens' familiar compression as software, going up the major flaw that lunar end was exposed to the sun to give a bag to contain more than 10 years by safe manufacturer Check Point. And making what safe researcher expect is less than subsequently is, in the a week that this flaw is announced, more than 100 kinds of different attack actions appeared on the net, and the amount still is increasing continuously in.
The WinRAR flaw that is discovered above all is by number CVE-2018-20250, it is a method passes through (Directory Traversal) flaw, but the ACE format file with tailor-made by sparks, allow be astonished guest to compress file solution any method to go up, for example the clip of the data that start of Windows, also but.ACE archives more the name is.RAR, the person that let use is duped more easily.
Safe personnel points out last week, in the a week that CVE-2018-20250 flaw is announced, they detect the attack that differs to more than 100 kinds acts, the victim at that time basically is located in the United States.
Amid atttacks case in, the newest special that be astonished guest uses Ariana Grande of American Neozoic singer " Thank U, nexT " will regard as bait. This contains those who blackmail a trojan to compress file name to be Ariana_Grande-thank_u, _next(2019)_[320].rar, after solution is compressed, can discover it deposited special song really, but also can fall in the condition of the without anybody knowing it at the same time blackmail trojan program solution to compress clip of the data that start. When systematic reopen machine, this one baleful process can be carried out automatically.
Because should be blackmailed,generated RSA state-private key was not saved after software is carried out, also did not send state-private key message aggressor through other channel, so even if victim to blackmail software writer to pay corresponding ransom to decode a file impossibly also, user key attention falls related the hope.
[be exposed to the sun to go out as WinRAR flaw, at present WinRAR already was in on lunar end gave off WinRAR 5.70 latest edition to repair flaw. Among them, winRAR moves directly besides the support to ACE format, because this suggests,broad WinRAR user upgrades as soon as possible or deploy kills poisonous software effectively. ]
- Investigate area: Enterprise canzonet is checked (click preview can examine the effect)
ZhongGuanCun of APP shop search is online, see newest 2018 mobile phone, jotter evaluate seniority
