Non-IT News Thread
-
Nasty WinRAR bug is being actively exploited to install hard-to-detect malware
19-year-old code-execution flaw exploited within days of being disclosed.
On Thursday, a researcher at McAfee reported that the security firm identified “100 unique exploits and counting” in the first week since the vulnerability was disclosed. So far, most of the initial targets were located in the US.
-
@mlnews said in Non-IT News Thread:
Nasty WinRAR bug is being actively exploited to install hard-to-detect malware
19-year-old code-execution flaw exploited within days of being disclosed.
On Thursday, a researcher at McAfee reported that the security firm identified “100 unique exploits and counting” in the first week since the vulnerability was disclosed. So far, most of the initial targets were located in the US.
I wonder if this works for other programs that handle .rar files as well?
-
Iran pumps up “massive” offensive exercise with as many as 50 drones
Knock-offs of US RQ-170, Predator drones included in coordinated strike test.
170 Sentinel. Iran's Islamic Revolutionary Guard Corps (IRGC) Aerospace Division staged what Iranian state media described as "massive drone drills" on March 14, including coordinated offensive operations with dozens of flying-wing drones based on the Lockheed RQ-170 Sentinel, captured by Iran in 2011, and Iranian copies of the General Atomics MQ-1 Predator.
-
New Zealand Shooting Live Updates: 49 Are Dead After 2 Mosques Are Hit
Forty-nine people were killed in shootings at two mosques in central Christchurch, New Zealand, on Friday, in a terrorist attack that Prime Minister Jacinda Ardern described as “an extraordinary and unprecedented act of violence.”
-
@travisdh1 said in Non-IT News Thread:
@mlnews said in Non-IT News Thread:
Nasty WinRAR bug is being actively exploited to install hard-to-detect malware
19-year-old code-execution flaw exploited within days of being disclosed.
On Thursday, a researcher at McAfee reported that the security firm identified “100 unique exploits and counting” in the first week since the vulnerability was disclosed. So far, most of the initial targets were located in the US.
I wonder if this works for other programs that handle .rar files as well?
My 1st thought. 7zip anyone?
-
@travisdh1 said in Non-IT News Thread:
@mlnews said in Non-IT News Thread:
Nasty WinRAR bug is being actively exploited to install hard-to-detect malware
19-year-old code-execution flaw exploited within days of being disclosed.
On Thursday, a researcher at McAfee reported that the security firm identified “100 unique exploits and counting” in the first week since the vulnerability was disclosed. So far, most of the initial targets were located in the US.
I wonder if this works for other programs that handle .rar files as well?
@scotth said in Non-IT News Thread:
@travisdh1 said in Non-IT News Thread:
@mlnews said in Non-IT News Thread:
Nasty WinRAR bug is being actively exploited to install hard-to-detect malware
19-year-old code-execution flaw exploited within days of being disclosed.
On Thursday, a researcher at McAfee reported that the security firm identified “100 unique exploits and counting” in the first week since the vulnerability was disclosed. So far, most of the initial targets were located in the US.
I wonder if this works for other programs that handle .rar files as well?
My 1st thought. 7zip anyone?
"When a vulnerable version of WinRAR is used to extract the contents...."
The vulnerability is within the WinRAR application. Not the compressed file itself.
The answer here is don't use WinRAR and actively uninstall it.
Here is an example of how to remote uninstall winrar:
Invoke-Command -Credential domain\user -ComputerName (Get-Content D:\Powershell\computernames.txt) -ScriptBlock {Get-CimInstance -ClassName Win32_Product -Filter "name like '%winrar%'" | Invoke-CimMethod -MethodName Uninstall} -
And here is the solution: "Another solution is to switch to 7zip."
Meaning that WinRAR's application is the issue. Not the file, even if the file itself is payloaded with a virus.
Literally the last sentence in the article. . .
-
@scotth said in Non-IT News Thread:
My 1st thought. 7zip anyone?
First thought should be either.... "WinRAR still exists?" or "What's WinRAR?"
-
@scottalanmiller said in Non-IT News Thread:
@scotth said in Non-IT News Thread:
My 1st thought. 7zip anyone?
First thought should be either.... "WinRAR still exists?" or "What's WinRAR?"
LOL.
-
At quick Los Angeles event, Tesla announces the 300-mile-range Model Y
The SUV will seat 7 and be a successor to the Model 3.
Tonight in Los Angeles, Tesla CEO Elon Musk showed off a prototype version of the Model Y, the fourth mass-produced vehicle that the electric car maker will bring to market. As expected, the vehicle will be a larger SUV take on the Model 3, much like the Model X was the larger, SUV version of the Model S.
-
-
After pushing addictive OxyContin, Purdue now pursuing overdose antidote
Purdue still blames the crisis on illicit drugs but says it won’t profit from antidote.
Notorious OxyContin-maker Purdue Pharma—which has been widely criticized for deceptively marketing its highly addictive painkiller and for its role in spurring the current nationwide epidemic of opioid abuse and overdose deaths—is moving ahead with a new, potent drug, one said to be an antidote to opioid overdoses.
-
-
-
How hackers pulled off a $20 million bank heist
Efforts were enabled by sloppy and insecure network architecture in Mexico.
In January 2018 a group of hackers, now thought to be working for the North Korean state-sponsored group Lazarus, attempted to steal $110 million from the Mexican commercial bank Bancomext. That effort failed. But just a few months later, a smaller yet still elaborate series of attacks allowed hackers to siphon off 300 to 400 million pesos, or roughly $15 to $20 million from Mexican banks. Here's how they did it.
-
Behind the Curve a fascinating study of reality-challenged beliefs
The documentary tracks how people form and maintain bizarre beliefs.
There's a scene somewhere in the middle of a new flat Earth documentary that acts as a metaphor for so much that surrounds it. Two of the central figures of Behind the Curve are visiting a spaceflight museum that pays tribute to NASA, an organization that they believe is foisting a tremendous lie on an indoctrinated and incurious public. One of them, Mark Sargent, sits in a re-entry simulator that suggests he should press "Start" to begin. He dutifully bangs away at the highlighted word "Start" on screen, but nothing happens.
-
@mlnews said in Non-IT News Thread:
Behind the Curve a fascinating study of reality-challenged beliefs
The documentary tracks how people form and maintain bizarre beliefs.
There's a scene somewhere in the middle of a new flat Earth documentary that acts as a metaphor for so much that surrounds it. Two of the central figures of Behind the Curve are visiting a spaceflight museum that pays tribute to NASA, an organization that they believe is foisting a tremendous lie on an indoctrinated and incurious public. One of them, Mark Sargent, sits in a re-entry simulator that suggests he should press "Start" to begin. He dutifully bangs away at the highlighted word "Start" on screen, but nothing happens.
I loved this one! Highly entertaining.
-
@NashBrydges said in Non-IT News Thread:
@mlnews said in Non-IT News Thread:
Behind the Curve a fascinating study of reality-challenged beliefs
The documentary tracks how people form and maintain bizarre beliefs.
There's a scene somewhere in the middle of a new flat Earth documentary that acts as a metaphor for so much that surrounds it. Two of the central figures of Behind the Curve are visiting a spaceflight museum that pays tribute to NASA, an organization that they believe is foisting a tremendous lie on an indoctrinated and incurious public. One of them, Mark Sargent, sits in a re-entry simulator that suggests he should press "Start" to begin. He dutifully bangs away at the highlighted word "Start" on screen, but nothing happens.
I loved this one! Highly entertaining.
Reading the article it seems they also talked about the chemtrail conspiracy theory too.
Have someone in this forum that believes in that one.
-
SpaceX may begin testing its Starship spacecraft this week
"Starship needs to be ready to fly again immediately after landing."
On Friday, the company sent a notice to nearby residents saying it planned to conduct testing of the vehicle as soon as the week of March 18, and that it would be closing the main roadway of Highway 4 to non-residents during the tests. This "safety zone perimeter" is part of an agreement with the local county, and has been set up out of an abundance of caution.
-
@JaredBusch said in Non-IT News Thread:
@NashBrydges said in Non-IT News Thread:
@mlnews said in Non-IT News Thread:
Behind the Curve a fascinating study of reality-challenged beliefs
The documentary tracks how people form and maintain bizarre beliefs.
There's a scene somewhere in the middle of a new flat Earth documentary that acts as a metaphor for so much that surrounds it. Two of the central figures of Behind the Curve are visiting a spaceflight museum that pays tribute to NASA, an organization that they believe is foisting a tremendous lie on an indoctrinated and incurious public. One of them, Mark Sargent, sits in a re-entry simulator that suggests he should press "Start" to begin. He dutifully bangs away at the highlighted word "Start" on screen, but nothing happens.
I loved this one! Highly entertaining.
Reading the article it seems they also talked about the chemtrail conspiracy theory too.
Have someone in this forum that believes in that one.
Wait, someone else is even loonier than I am? This can not stand!
