WinRAR, the tool to update

A 19-year-old vulnerability was recently discovered in the WinRAR application.

WinRAR is a very popular tool. It decompresses not only ZIP archives, but also Roshal Archive Compressed (RAR) files and about fifteen other formats. One of these is ACE.

ACE archives are rarely used and lost much of their popularity in the early 2000s. However, with the discovery of this vulnerability, many attackers are sending infected archives, hoping to catch users still running old versions of WinRAR.

Update your application, set an explicit filter for .ACE extensions on your email filtering platforms and, above all, remind your users never to open unknown or suspicious attachments!