Organizations must protect their networks by implementing a robust vulnerability management program and deploying endpoint security solutions. Google has urged users to immediately apply the latest WinRAR patch to prevent their devices from being invaded by state-backed actors. State-sponsored actors from a number of countries are exploiting this vulnerability in their malicious operations. This vulnerability lets hackers execute arbitrary code on the targeted device.Īttackers can steal sensitive data, hijack the victim’s computer, and install malware. Google’s TAG researchers have found that government-sponsored hackers are actively exploiting an already discovered WinRAR vulnerability.
According to Google’s Threat Analysis Group (TAG), the group exploiting the vulnerability comprises Sandworm, Fancy Bear, and APT40, all associated with the Russian government and military.