WinRAR zero-day bug exploited to steal trader funds

Sead Fadilpašić

Thu, Aug 24, 2023, 7:16 AM2 min read

Magnifying glass enlarging the word 'malware' in computer machine code

A bug in the way WinRAR handles .ZIP files is being exploited to steal money from crypto traders and other market speculators.

Analysis from cybersecurity experts Group-IB discovered a group of criminals started distributing a malicious .ZIP archive across multiple forums where traders gather to share ideas, experiences, and similar.

Visitors to at least eight such forums were targeted by the zero-day flaw, tracked as CVE-2023-38831, with the archive carrying a malicious script hidden inside a .JPG or .TXT file.

Hundreds of victims

While administrators to some of the forums were quick to react and warn their users of the attack, they weren’t fast enough, Group-IB said, stating that they found evidence of hackers unlocking accounts “that were disabled by forum administrators to continue spreading malicious files.”

The malware grants the attackers access to their victims’ brokerage accounts, the researchers further explained, which allowed them to pull the money out. At least 130 traders had their endpoints infected, Group-IB said, but the researchers don’t know how much money was stolen in the process.

> JumpCloud was hit by North Korean hackers looking to steal crypto

> Another crypto marketplace has been hit by a major cyberattack

> These are the best firewalls

One victim said the withdrawal was unsuccessful.

While the researchers don’t know for certain who is behind this campaign, they suspect the threat actor to be “Evilnum”, also known as “TA4563”, as both these groups used a Visual Basic trojan called DarkMe. Evilnum was first observed some five years ago, targeting trading platforms and financial organizations in the UK and Europe.

Cryptocurrency traders are a popular target among hackers due to the way the blockchain is designed. Once a transaction is initiated, in most cases it’s impossible to reverse.

The flaw has since been fixed with a patch, and if you’re worried about being targeted, make sure your WinRAR is on version 6.23.

Check out the best ID theft protection right now

Via: TechCrunch

Forget Nvidia: Members of Congress Are Scooping Up Shares of Its Core Rival Instead
There's a much more popular AI stock on Capitol Hill than the leading AI chip maker.
Motley Fool•11h ago
Are You Saving Enough To Be In The Top 3% Of Retirees? Here's How Much You Need
Retirement savings play a crucial role in securing financial stability in your golden years. For those aiming high, being in the top 3% of retirees in terms of savings enhances comfort and offers greater financial freedom. Using data from the Federal Reserve's Survey of Consumer Finances, a 2024 survey by the Employee Benefit Research Institute, reveals that individuals with over $1 million in retirement accounts rank in the top 3% of retirees. Only 3.2% of retirees have surpassed the $1 million
Benzinga•1d ago
Nvidia Owns a 3.4% Stake in This Innovative Artificial Intelligence (AI) Stock Cathie Wood Loves
The $50 million purchase could turn into Nvidia's biggest investment.
Motley Fool•7h ago
Housing supply surges by up to 50% in these metro areas — and many sellers are being forced to slash their asking prices
The property report includes 85 major metropolitan areas in the U.S. with populations of at least 750,000.
MarketWatch•1d ago
2 Stock-Split Stocks to Buy Hand Over Fist Right Now
These proven wealth builders could be exactly what you're searching for right now.
Motley Fool•1d ago
3 Stocks to Invest $30,000 in Right Now
$10,000 to each of these companies could deliver major returns over the next decade.
Motley Fool•2h ago
A Once-in-a-Generation Investment Opportunity: 1 Artificial Intelligence (AI) Stock to Buy Now and Hold Forever
Lots of companies are trying to capitalize on the AI revolution, but one company sticks out from the pack.
Motley Fool•2h ago
Walmart CEO started his career unloading trailers at the warehouse—he says he got promotion after promotion by raising his hand when his boss was out of town
Walmart's CEO went from earning $6.50 an hour to $25 million a year—here are his three tips for climbing the corporate ladder like him
Fortune•1d ago
Worried About a Stock Market Sell-Off? Buy This Top Vanguard ETF
There are benefits to investing in stocks that have reasonable multiples and aren't as dependent on future earnings growth to justify their valuations.
Motley Fool•7h ago
U.S. panic over national debt might mark a culture shift—are Americans becoming more ‘European’ about money?
Jamie Dimon and Jerome Powell are taking the European viewpoint on soaring debt levels in the U.S.
Fortune•1d ago

News

Life

Entertainment

Finance

Sports

New on Yahoo

Yahoo Finance

WinRAR zero-day bug exploited to steal trader funds

Hundreds of victims

Recommended Stories

Forget Nvidia: Members of Congress Are Scooping Up Shares of Its Core Rival Instead

Are You Saving Enough To Be In The Top 3% Of Retirees? Here's How Much You Need

Nvidia Owns a 3.4% Stake in This Innovative Artificial Intelligence (AI) Stock Cathie Wood Loves

Housing supply surges by up to 50% in these metro areas — and many sellers are being forced to slash their asking prices

2 Stock-Split Stocks to Buy Hand Over Fist Right Now

3 Stocks to Invest $30,000 in Right Now

A Once-in-a-Generation Investment Opportunity: 1 Artificial Intelligence (AI) Stock to Buy Now and Hold Forever

Walmart CEO started his career unloading trailers at the warehouse—he says he got promotion after promotion by raising his hand when his boss was out of town

Worried About a Stock Market Sell-Off? Buy This Top Vanguard ETF

U.S. panic over national debt might mark a culture shift—are Americans becoming more ‘European’ about money?