![]() ![]() The aftermath of an unwitting victim opening one of these files is dire. Despite this, Group-IB noted that the hackers demonstrated the ability to reactivate disabled accounts, allowing them to continue spreading their damaging files either through threads or private messages. One of these forums, after detecting the presence of malevolent files, issued a warning to its users and took measures to block the attackers’ accounts. ![]() Although Group-IB has refrained from disclosing the names of these forums, it has confirmed that they cover a spectrum of subjects, from trading and investments to cryptocurrency-related discussions. These malicious ZIP archives, cleverly disguised, found their way onto at least eight public forums. The attackers’ modus operandi revolves around targeting specialized trading forums. ![]() Group-IB first identified this 0-Day vulnerability in June, but its researchers suspect that hackers have been taking advantage of it since April. Essentially, it allows hackers to conceal malicious scripts within seemingly innocent archive files, such as images or text documents, thus deceiving victims into unknowingly opening them. The vulnerability centers around the processing of ZIP file formats by WinRAR. This vulnerability, which was discovered by cybersecurity company Group-IB, has been skillfully exploited by cybercriminals to compromise the security of traders and potentially pilfer funds. Approximately 130 traders have fallen victim to this scheme, and the financial losses are still being calculated.Ĭybersecurity experts have unveiled a concerning situation involving a zero-day vulnerability in the widely-used archiving tool, WinRAR.Once a victim opens the malicious file, the hackers can gain unauthorized access to their brokerage accounts. ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |