WinRAR has a major security bug
(www.windowscentral.com)
from MazonnaCara89@lemmy.ml to technology@lemmy.ml on 21 Oct 2023 11:25
https://lemmy.ml/post/6803290
from MazonnaCara89@lemmy.ml to technology@lemmy.ml on 21 Oct 2023 11:25
https://lemmy.ml/post/6803290
threaded - newest
Maybe because of the fact that they can’t pay their staff, because nobody pays to use their product.
Except it’s been developed and maintained by one guy, for the past 30 years
.
Winrar dev gigachad ngl
Congratulations, you’re dumb as fuck!
I paid for it 🤷 that’s how devs can afford to keep working on their open source projects in the long run.
Wrong wording due to posting early in the morning, meant any independent work…
I paid for it too. I mean fuck man. I’ve been using winrar for almost 30 years. That’s more than I can say for most things in my life. I figured it was the least I could do.
Same I bought the physical disk too, not like I have a disk drive. But now I have a licensed winrar disk
You guys are all Eugene Roshal alts. Aren’t you? Nice try Eugene!
Edit: in reality I think Eugene is a badass who has done something really special in a world overflowing with greed.
Winrar is… Not open source. Where did you get that from?
Early in the morning post, worded that wrong, but the sentiment is the same, open source or independent projects, the creators need something in return to keep working on them
That’s fair enough!
I’ve paid for winrar because I decided I’ve used it for the better half of my life and well kindly keep using it and getting rid of that pop up whilst also giving back to soldering i use regularly was the right choice for me.
Likewise! Once I finally started making real money I tried to buy software I pirated early on. Even if I don’t currently use it.
Same, although I do use it out of habit mostly.
This is the best summary I could come up with:
The issue was discovered by Google’s Threat Analysis Group (TAG), which discussed the problem in depth in a blog post.
The issue allows an attacker to execute arbitrary code when someone opens a zipped file.
"Cybercrime groups began exploiting the vulnerability in early 2023, when the bug was still unknown to defenders.
“TAG has observed government-backed actors from a number of countries exploiting the WinRAR vulnerability as part of their operations.”
While WinRAR is a useful piece of software used by over half a billion people, it is perhaps more famous as a meme or as the butt of jokes.
When Microsoft announced native support for the .rar file format, WinRAR shared a meme on Twitter (now called X).
The original article contains 333 words, the summary contains 119 words. Saved 64%. I’m a bot and I’m open source!
Good bot!
Is it that you can keep using the free trial forever? /s
Again? Is it the same one with 7zip?
yeah it’s called winrar
Switch to 7-Zip now!
scoop install 7zip.everytime.
Peazip is also a very good alternative.
TLDR Some folks just never update their software. Idk if this is just a Windows problem but damn. I remember reading about this 0-day months ago and thinking to myself malware groups will have a field day before the vulnerability finally becomes dead just because of this.