Multiple APT groups exploited WinRAR flaw CVE-2023-38831 | allinfosecnews.com

Oct. 19, 2023, 5:23 a.m. | Pierluigi Paganini

Security Affairs securityaffairs.co

Google TAG reported that both Russia and China-linked threat actors are weaponizing the a high-severity vulnerability in WinRAR. Google’s Threat Analysis Group (TAG) reported that in recent weeks multiple nation-state actors were spotted exploiting the vulnerability CVE-2023-38831 in WinRAR. The researchers reported that several cybercrime groups began exploiting the flaw in early 2023, when the […]

The post Multiple APT groups exploited WinRAR flaw CVE-2023-38831 appeared first on Security Affairs.

analysis apt apt28 apt40 apt groups breaking news china china-linked threat actors cve cve-2023-38831 cybercrime data breach exploited exploiting flaw google google tag hacking high information security news it information security nation nation-state actors pierluigi paganini researchers russia severity state tag threat threat actors threat analysis threat analysis group vulnerability winrar winrar flaw

More from securityaffairs.co / Security Affairs

Panda Restaurant Group disclosed a data breach 4 hours ago | securityaffairs.co

breach breaking news cyber crime cybercrime +14

Ex-NSA employee sentenced to 262 months for attempting to transfer classified documents to Russia 16 hours ago | securityaffairs.co

agency breaking news classified colorado +16

Cuttlefish malware targets enterprise-grade SOHO routers 17 hours ago | securityaffairs.co

authentication black lotus black lotus labs cloud +26

A flaw in the R programming language could allow code execution 19 hours ago | securityaffairs.co

arbitrary code arbitrary code execution breaking news code +22

Muddling Meerkat, a mysterious DNS Operation involving China’s Great Firewall 1 day, 2 hours ago | securityaffairs.co

apt bypass china china great firewall +21

Notorious Finnish Hacker sentenced to more than six years in prison 1 day, 13 hours ago | securityaffairs.co

aleksanteri kivimäki breaking news center cyber crime +17

CISA guidelines to protect critical infrastructure against AI-based threats 1 day, 17 hours ago | securityaffairs.co

agency ai ai risks analysis +27

NCSC: New UK law bans default passwords on smart devices 2 days, 3 hours ago | securityaffairs.co

april ban bans breaking news +29

The FCC imposes $200 million in fines on four US carriers for unlawfully sharing user … 2 days, 5 hours ago | securityaffairs.co

access breaking news carriers communications +19

Social Engineer For Reverse Engineering Exploit Study

@ Independent study | Remote

View on infosec-jobs.com

Premium Hub - CoE: Business Process Senior Consultant, SAP Security Role and Authorisations & GRC

@ SAP | Dublin 24, IE, D24WA02

View on infosec-jobs.com

Product Security Response Engineer

@ Intel | CRI - Belen, Heredia

View on infosec-jobs.com

Application Security Architect

@ Uni Systems | Brussels, Brussels, Belgium

View on infosec-jobs.com

Sr Product Security Engineer

@ ServiceNow | Hyderabad, India

View on infosec-jobs.com

Analyst, Cybersecurity & Technology (Initial Application Deadline May 20th, Final Deadline May 31st)

@ FiscalNote | United Kingdom (UK)

View on infosec-jobs.com