Bleeping Computer

WinRAR SFX archives can run PowerShell without being detected

Hackers are adding malicious functionality to WinRAR self-extracting archives that contain harmless decoy files, allowing them to plant backdoors without triggering the security agent on the target ...
ZDNet

Critical WinRAR vulnerability places 500 million users at risk

An unpatched, critical remote code execution flaw within WinRAR's SFX archive features has been disclosed by a researcher. WinRAR, available for Windows users, is an unzipping tool able to decompress ...
InfoWorld

When is a flaw not a flaw? The WinRAR question

A researcher found remote code execution flaw in WinRAR, but the real question is why are you opening unknown RAR files A remote code execution vulnerability in the WinRAR utility can be potentially ...
Computerworld

Critical flaw puts 500 million WinRAR users at risk of being pwned by unzipping a file

500 million, yes half a billion, WinRAR users are at risk of being pwned thanks to a critical flaw that could allow hackers to take control of victims’ computers. Vulnerability Lab, via the Full ...