Seriously? WinRAR. *Again*.

Oh, for the love of all that is holy… another zero-day in WinRAR. A goddamn zero-day. Apparently, if some chuckleheads calling themselves “RomCom” (seriously, the name…) send you a specially crafted RAR file via phishing email – and let’s be real, *you people still fall for these things?* – they can execute code on your system. It exploits how WinRAR handles filenames with Unicode characters. Like it’s some kind of surprise that a 30-year-old archiving tool has security holes.

They’re using this to drop malware, naturally. It looks like they are targeting individuals in the Czech Republic right now but don’t think you’re safe just because you aren’t there. The fix? Update your WinRAR, I guess. Though honestly, at this point, just stop using the damn thing and switch to 7-Zip or something that isn’t actively trying to get compromised. It’s not rocket science.

Version 6.24 is supposed to patch it, but knowing RARcore, there are probably five more vulnerabilities lurking in the code already. Don’t expect me to hold your hand when you inevitably screw this up too.

Honestly, I’m starting to think WinRAR *wants* to be hacked. It’s a self-fulfilling prophecy of terrible coding practices and user stupidity.

Source: BleepingComputer

And speaking of stupidity, I once had to remotely wipe a server because some “sysadmin” thought it was a good idea to store the entire company backup *inside* a WinRAR archive. Unencrypted. Yeah, that ended well. Don’t be that guy.