Security News

Week in review: Microsoft patches exploited Windows CLFS 0-day, WinRAR MotW bypass flaw fixed

2025-04-13 08:00

Here’s an overview of some of last week’s most interesting news, articles, interviews and videos: Microsoft fixes actively exploited Windows CLFS zero-day (CVE-2025-29824) April 2025 Patch Tuesday...

#0day #bypass #microsoft #windows #winrar #CVE-2025-31334 #CVE-2025-29824

WinRAR MotW bypass flaw fixed, update ASAP (CVE-2025-31334)

2025-04-07 11:28

WinRAR users, upgrade your software as soon as possible: a vulnerability (CVE-2025-31334) that could allow attackers to bypass Windows’ Mark of the Web (MotW) security warning and execute...

#bypass #CVE #update #winrar #CVE-2025-31334

WinRAR flaw bypasses Windows Mark of the Web security alerts

2025-04-05 14:14

A vulnerability in the WinRAR file archiver solution could be exploited to bypass the Mark of the Web (MotW) security warning and execute arbitrary code on a Windows machine. [...]

#security #WEB #windows #winrar

New WinRAR version strips Windows metadata to increase privacy

2025-02-18 22:57

WinRAR 7.10 was released yesterday with numerous features, such as larger memory pages, a dark mode, and the ability to fine-tune how Windows Mark-of-the-Web flags are propagated when extracting...

#privacy #windows #winrar

WinRAR 7.10 boosts Windows privacy by stripping MoTW data

2025-02-18 22:57

WinRAR 7.10 was released yesterday with numerous features, such as larger memory pages, a dark mode, and the ability to fine-tune how Windows Mark-of-the-Web flags are propagated when extracting...

#privacy #windows #winrar

Hacktivists Exploits WinRAR Vulnerability in Attacks Against Russia and Belarus

2024-09-03 13:29

A hacktivist group known as Head Mare has been linked to cyber attacks that exclusively target organizations located in Russia and Belarus. "Head Mare uses more up-to-date methods for obtaining...

#attack #exploit #hacktivist #russia #vulnerability #winrar #CVE-2023-38831

FlyingYeti Exploits WinRAR Vulnerability to Deliver COOKBOX Malware in Ukraine

2024-05-30 16:37

Cloudflare on Thursday said it took steps to disrupt a month-long phishing campaign orchestrated by a Russia-aligned threat actor called FlyingYeti targeting Ukraine. "The FlyingYeti campaign...

#exploit #malware #ukraine #vulnerability #winrar

UAC-0099 Using WinRAR Exploit to Target Ukrainian Firms with LONEPAGE Malware

2023-12-22 07:46

The threat actor known as UAC-0099 has been linked to continued attacks aimed at Ukraine, some of which leverage a high-severity flaw in the WinRAR software to deliver a malware strain called...

#exploit #malware #ukrainian #winrar

Russian hackers use Ngrok feature and WinRAR exploit to attack embassies

2023-11-19 16:14

NDSC says that the Russian hackers used a Ngrok free static domain to access the command and control server hosted on their Ngrok instance. A report from Google in October notes that the security issue was exploited by Russian and Chinese state hackers to steal credentials and other sensitive data, as well as to establish persistence on target systems.

#attack #exploit #hacker #russian #winrar

Experts Uncover DarkCasino: New Emerging APT Threat Exploiting WinRAR Flaw

2023-11-16 13:51

A hacking group that leveraged a recently disclosed security flaw in the WinRAR software as a zero-day has now been categorized as an entirely new advanced persistent threat (APT). Cybersecurity...

#APT #threat #winrar

Security News {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Security News"}]}

Security News