108

WinRAR zero-day exploited since April to hack trading accounts(www.bleepingcomputer.com)

posted
by
Avatar
rhabarba@feddit.de
in
Avatar
technology@beehaw.org
22 comments
hidereport
Sort:
HotTopControversialNewOld
You are viewing a single thread.
View all comments View context
Avatar
dan@upvote.au
17 points
*

There’s barely any CVEs on that page. It’s likely a security researcher did some fuzzing of the executable and found a few issues at once.

Have you looked at how many vulnerabilities there’s been in things like Windows, MacOS, Chrome, etc?

permalink
report
parent
reply
Avatar
rhabarba@feddit.deOP
3 points

I have. The point is that there is no software without vulnerabilities.

permalink
report
parent
reply
Avatar
dan@upvote.au
12 points

The point is that there is no software without vulnerabilities.

Definitely true, but that conflicts with this:

Coincidentally, security was one of the reasons to uninstall 7-Zip.

If you uninstalled software because of security, you wouldn’t have any software left :)

permalink
report
parent
reply
Avatar
rhabarba@feddit.deOP
2 points

Also true. I was probably too impatient when I bought a WinRAR license over night. But now I have it and I use it. :-)

permalink
report
parent
reply
Show more comments

Technology

!technology@beehaw.org

Create post

A nice place to discuss rumors, happenings, innovations, and challenges in the technology sphere. We also welcome discussions on the intersections of technology and society. If it’s technological news or discussion of technology, it probably belongs here.

Remember the overriding ethos on Beehaw: Be(e) Nice. Each user you encounter here is a person, and should be treated with kindness (even if they’re wrong, or use a Linux distro you don’t like). Personal attacks will not be tolerated.

Subcommunities on Beehaw:

This community’s icon was made by Aaron Schneider, under the CC-BY-NC-SA 4.0 license.

Community stats

  • 3K

    Monthly active users

  • 3.3K

    Posts

  • 81K

    Comments

Community moderators