Crypt0Gore (OP)
|
|
August 24, 2023, 09:07:03 AM Merited by Symmetrick (5), DdmrDdmr (4), Antotena (3), Ruttoshi (3), NeuroticFish (2), Halab (2), Marykeller (2), GiftedMAN (2), Chilwell (2), iBaba (2), boyptc (1), tech30338 (1), Jegileman (1) |
|
There is a new danger lurking around PC users that many may not know about, especially those that store Bitcoin and coins on PC wallets, please spare me a little bit of your precious time. The first set of free softwares we like installing on a PC when we just installed a Windows OS or when we just buy a new laptop or Desktop PC is WinZip and WinRAR, there is something going on lately that I need you to know about, though it's been a month old. It's easier to just go online and search for Winrar, either it's old version or not, we don't care, they all work very well for extracting files. Well there is catch, WinRar software is vulnerable to attacks now, there is a problem in this software that lets remote attackers to execute some codes through the affected version on RarLab Winrar. This vulnerability get your PC compromised without you having a clue. Before you freak out, there is a fix and it's the simplest of all, just update your WinRar to the latest version and you are good.Possible Threats if you leave this unfixed1. Attackers can use this vulnerability to execute codes in the context of the current process. 2. If you don't get rid of left over software on your PC they could be used as a path to get to your files, e.g passwords and crypto-related things on your PC. 3. You can be monitored without you knowing, all your typing like seed phrases and co can easily be known by the attackers, and not even your DEX activities can secure your wallet from getting compromised. Bonus Advice4. 7Zip is open source and it should be your primary choice. The lesson I personally learned from this is to always keep your software updated, and always get rid of software you don't use anymore, since you don't use them anymore it's easier to feel like you don't need to update them, and vulnerability like this mostly happens with old or outdated software, New Patches gets rid of the biggest problems on computers, it's not something to joke with.
|
|
|
|
Cantsay
|
|
August 24, 2023, 10:24:13 AM |
|
Before you freak out, there is a fix and it's the simplest of all, just update your WinRar to the latest version and you are good.
I have just one question; if I should download the old version that’s prone to attacks from the official website. Will I still be open to those attacks or is it the the free versions from unknown sources. I know that download softwares from unofficial sites are not advisable as they could contain softwares that were altered or softwares that contains malware that poses security risks to your system, so I just want to know if the official versions still have the bug or not.
|
| | | | | | | ███▄▀██▄▄ ░░▄████▄▀████ ▄▄▄ ░░████▄▄▄▄░░█▀▀ ███ ██████▄▄▀█▌ ░▄░░███▀████ ░▐█░░███░██▄▄ ░░▄▀░████▄▄▄▀█ ░█░▄███▀████ ▐█ ▀▄▄███▀▄██▄ ░░▄██▌░░██▀ ░▐█▀████ ▀██ ░░█▌██████ ▀▀██▄ ░░▀███ | | ▄▄██▀▄███ ▄▄▄████▀▄████▄░░ ▀▀█░░▄▄▄▄████░░ ▐█▀▄▄█████████ ████▀███░░▄░ ▄▄██░███░░█▌░ █▀▄▄▄████░▀▄░░ █▌████▀███▄░█░ ▄██▄▀███▄▄▀ ▀██░░▐██▄░░ ██▀████▀█▌░ ▄██▀▀██████▐█░░ ███▀░░ | | | | |
|
|
|
hd49728
Legendary
Offline
Activity: 2268
Merit: 1127
|
|
August 24, 2023, 10:58:37 AM |
|
You can store your bitcoin or cryptocurrency safely with a good non custodial, open source wallet on your computer. If you don't use your computer for Internet surfing and it is safest if you use your computer as an air-gap device for your wallet.
If you don't use cracked softwares for your computers, you reduce risks of malicious components which can be used by hackers.
If you use your computer for multiple tasks and especially with cracked softwares, bad Internet surfing like dark, pornish websites, you will be under bigger risk of hacks. It is not because your desktop is sensitive with hacks, it is because of you.
|
| CHIPS.GG | | | ▄▄███████▄▄ ▄████▀▀▀▀▀▀▀████▄ ▄███▀░▄░▀▀▀▀▀░▄░▀███▄ ▄███░▄▀░░░░░░░░░▀▄░███▄ ▄███░▄░░░▄█████▄░░░▄░███▄ ███░▄▀░░░███████░░░▀▄░███ ███░█░░░▀▀▀▀▀░░░▀░░░█░███ ███░▀▄░▄▀░▄██▄▄░▀▄░▄▀░███ ▀███░▀░▀▄██▀░▀██▄▀░▀░███▀ ▀███░▀▄░░░░░░░░░▄▀░███▀ ▀███▄░▀░▄▄▄▄▄░▀░▄███▀ ▀████▄▄▄▄▄▄▄████▀ █████████████████████████ | | ▄▄███████▄▄ ▄███████████████▄ ▄█▀▀▀▄█████████▄▀▀▀█▄ ▄██████▀▄█▄▄▄█▄▀██████▄ ▄████████▄█████▄████████▄ ████████▄███████▄████████ ███████▄█████████▄███████ ███▄▄▀▀█▀▀█████▀▀█▀▀▄▄███ ▀█████████▀▀██▀█████████▀ ▀█████████████████████▀ ▀███████████████████▀ ▀████▄▄███▄▄████▀ ████████████████████████ | | 3000+ UNIQUE GAMES | | | 12+ CURRENCIES ACCEPTED | | | VIP REWARD PROGRAM | | ◥ | Play Now |
|
|
|
NotATether
Legendary
Offline
Activity: 1778
Merit: 7372
Top Crypto Casino
|
|
August 24, 2023, 11:49:06 AM |
|
4. 7Zip is open source and it should be your primary choice.
7-zip can do pretty much all the things that WinRAR can except for creating RAR archives, the code for which is proprietary and owned by themselves so I get why other archival formats can only decompress them. But RAR archives are pretty much only found in private torrent sites and shady download piracy pages. Even the 7z format I heard is slightly more efficient than RAR.
|
|
|
|
robelneo
Legendary
Offline
Activity: 3416
Merit: 1226
|
|
August 24, 2023, 11:50:53 AM |
|
The lesson I personally learned from this is to always keep your software updated, and always get rid of software you don't use anymore, since you don't use them anymore it's easier to feel like you don't need to update them, and vulnerability like this mostly happens with old or outdated software, New Patches gets rid of the biggest problems on computers, it's not something to joke with.
One of the options is to minimize the software you're using if you have a wallet on your PC, only retained software that you need not what you want, and use an anti-virus that can trace and warn you about software that needs to be updated, it is still better to use a hardware wallet but if you really need to run a Crypto wallet for some of your trading needs then minimize and simplify the PC that you're using do not use it for surfing questionable sites like some faucets and CPA sites.
|
|
|
|
lovesmayfamilis
Legendary
Offline
Activity: 2268
Merit: 4541
✿♥‿♥✿
|
|
August 24, 2023, 02:33:18 PM |
|
I don't use Windows at all, but I know it very well. Explain why WinRAR is needed there. I recently installed Windows 10 in VirtualBox. I downloaded an image and installed a Windows system. Does this system need additional software? If you are afraid of getting infected with third-party programs that can bring trouble, work with what you have. There is no need to archive or compress anything. It is enough for me to work on the software that Windows provides. By the way, if you delve into history, then any archiver on Windows was once accused of harmful content.
It's time to fall in love with Linux.
|
|
|
|
dkbit98
Legendary
Offline
Activity: 2408
Merit: 7561
|
|
August 24, 2023, 02:48:36 PM |
|
7Zip is open source and it should be your primary choice.
WinRar is not really a free software since it's showing ads all the time, and you have to pay to remove this ads (or use cracked version),but 7zip is very good basic option. There are few other open source alternatives for winrar, like PeaZip that looks much better, have better integration with OS, and it supports more files. However, if you want to avoid all this risks and complications it's best to switch from win0S to good Linux OS (Fedora, Debian, Mint) that already have integrated compression tools. After doing that you wont have to worry anymore about malware and remote attacks.
|
|
|
|
m2017
Legendary
Offline
Activity: 1988
Merit: 1402
Playbet.io - Crypto Casino and Sportsbook
|
|
August 24, 2023, 05:27:50 PM |
|
I don't use Windows at all, but I know it very well. Explain why WinRAR is needed there. I recently installed Windows 10 in VirtualBox. I downloaded an image and installed a Windows system. Does this system need additional software? If you are afraid of getting infected with third-party programs that can bring trouble, work with what you have. There is no need to archive or compress anything. It is enough for me to work on the software that Windows provides. By the way, if you delve into history, then any archiver on Windows was once accused of harmful content.
It's time to fall in love with Linux.
In this, in the built-in archiver, a danger to the user can just be hidden - vulnerabilities and viruses with an attack vector through new-old types of archives. There are more recent versions of Windows - version 11. Windows 11 Insider has native support for working with 7-zip, rar, and more - link. Which calls into question the use of those versions of Windows that have built-in applications, such as an archiver. I will supplement OP's post with a link to an article about fixing a critical vulnerability in Winrar that allows malicious code to run in the system for the sake of completeness - link. In general, ideally, it is strongly recommended (if possible) to separate the computer (have multiple devices) for everyday tasks and work with cryptocurrencies (with a minimum set of programs).
|
|
|
|
Faisal2202
|
Thanks for the heads-up. I just checked and was relieved to see I do not have any WinRAR or WinZip installed on my device. But I am not sure if they are installed on my second device. But still If I get to open that device, I will try to disconnect from the internet, then try to remove that app totally, and I hope I will be good to go. And you did not provide any of the source links from where you got the news, as it will be good to read the full back story of the case. Otherwise, I still have ways to find the source. And TBH, I did not know 7zip was better than Winrar because anytime I have to download any zip software, I avoid downloading 7zip because of my bad experience with it. But I think now I have to change my priorities. I have just one question; if I should download the old version that’s prone to attacks from the official website. Will I still be open to those attacks or is it the the free versions from unknown sources.
I know that download softwares from unofficial sites are not advisable as they could contain softwares that were altered or softwares that contains malware that poses security risks to your system, so I just want to know if the official versions still have the bug or not.
According to this source I think even if you have downloaded from the official source you need to update the Winrar. Venerable shareware archiving app WinRAR has recently been patched to fix an alarming flaw. The update to WinRAR version 6.23, spotted by Bleeping Computer, fixes the vulnerability to the high-severity CVE-2023-40477. In brief, earlier versions of WinRAR were vectors for running a program (arbitrary code execution) if an attacker could tempt the user to open a specially crafted RAR file.
|
|
|
|
Dunamisx
|
|
August 24, 2023, 07:30:29 PM |
|
The first additional tip i can advise anyone in using a PC for his wallet is to disconnect the device from any form of Internet connectivity to increase it security practice in taking this measure, make it personal with you only having access to using it and don't think that your coins are well secured with the password guiding the PC, your private keys are more important in controlling any means to lead to your attack.
|
|
|
|
ImThour
Copper Member
Legendary
Offline
Activity: 1498
Merit: 1619
Bitcoin Bottom was at $15.4k
|
|
August 25, 2023, 02:01:11 AM |
|
If you have Crypto above $10k, you should just buy a separate device with Linux on it to just operate your Wallet. Keep it disconnected from the Internet and just connect once you want to do a transaction or something. This way you can save a lot of money and prevent most of these attacks. You cannot be up to date with every new attack going on in the Cryptospace, so keeping your system generally safe should be the priority.
|
|
|
|
philipma1957
Legendary
Online
Activity: 4298
Merit: 8828
'The right to privacy matters'
|
|
August 25, 2023, 02:36:31 AM |
|
If you have Crypto above $10k, you should just buy a separate device with Linux on it to just operate your Wallet. Keep it disconnected from the Internet and just connect once you want to do a transaction or something. This way you can save a lot of money and prevent most of these attacks. You cannot be up to date with every new attack going on in the Cryptospace, so keeping your system generally safe should be the priority.
yeah even 5k is enough to have a wallet only pc.
|
|
|
|
tech30338
Full Member
Offline
Activity: 728
Merit: 150
Defend Bitcoin and its PoW: bitcoincleanup.com
|
|
August 25, 2023, 02:40:13 AM |
|
If you have Crypto above $10k, you should just buy a separate device with Linux on it to just operate your Wallet. Keep it disconnected from the Internet and just connect once you want to do a transaction or something. This way you can save a lot of money and prevent most of these attacks. You cannot be up to date with every new attack going on in the Cryptospace, so keeping your system generally safe should be the priority.
This is the best option for me since most of hackers wont waste time attacking linux OS, although this can be done but it will take time, since they have to brute force in where there is a report who is trying to access in putty once you have log-in, but lots of users are in windows, achieving files using 7zip, this works also on linux and windows, OP suggestion using this is a great option i have been using this for like several years now and i have never encounter a problem both in windows and linux, also if you are really don't want to be expose, avoid forwarding your IP address, and expose ports outside, I suggest using different ports and a fail2ban, I'm sure this have also a counterpart in windows, also avoid free softwares downloadable from torent etc.
|
|
|
|
Jones Praise
Newbie
Offline
Activity: 29
Merit: 0
|
|
August 25, 2023, 04:00:05 AM |
|
If you have Crypto above $10k, you should just buy a separate device with Linux on it to just operate your Wallet. Keep it disconnected from the Internet and just connect once you want to do a transaction or something. This way you can save a lot of money and prevent most of these attacks. You cannot be up to date with every new attack going on in the Cryptospace, so keeping your system generally safe should be the priority.
yeah even 5k is enough to have a wallet only pc. Sorry to ask, is there another means to store my coin without having to get a wallet only pc? I am aware that for one to be able to purchase a coin worth $5k in the first place they should be able to have spare for the security of the coin but what about that of someone who have just a few hundred dollars worth of Bitcoin? Is there a way to store them that will provide more security to the coins? I'm still a beginner at Bitcoin and the whole thing but I feel it's important to learn about security for future reference.
|
|
|
|
NeuroticFish
Legendary
Offline
Activity: 3850
Merit: 6585
Looking for campaign manager? Contact icopress!
|
|
August 25, 2023, 04:36:26 AM |
|
Sorry to ask, is there another means to store my coin without having to get a wallet only pc? I am aware that for one to be able to purchase a coin worth $5k in the first place they should be able to have spare for the security of the coin but what about that of someone who have just a few hundred dollars worth of Bitcoin? Is there a way to store them that will provide more security to the coins?
I'm still a beginner at Bitcoin and the whole thing but I feel it's important to learn about security for future reference.
If you know what you are doing, even a separate USB stick (with a live OS and so on) will do. But if you are a newbie and not that knowledgeable with computers too maybe, then hardware wallet should be your friend.
I used WinRAR many years ago. Now I see it as an outdated software, 7zip being superior. But I know many people that are so used to WinRAR they still have it. Thanks OP for the warning.
|
|
|
|
Crypt0Gore (OP)
|
|
August 25, 2023, 06:19:30 AM |
|
Before you freak out, there is a fix and it's the simplest of all, just update your WinRar to the latest version and you are good.
I have just one question; if I should download the old version that’s prone to attacks from the official website. Will I still be open to those attacks or is it the the free versions from unknown sources. I know that download softwares from unofficial sites are not advisable as they could contain softwares that were altered or softwares that contains malware that poses security risks to your system, so I just want to know if the official versions still have the bug or not. Go to the official website and download the latest version, stay away from every old versions either through other third party websites or the official website, what you want to look for it's the latest version of Winrar.Right now the latest version of WinRar is 6.23 and the vulnerability is already been patched on this 6.23 version.
|
|
|
|
DdmrDdmr
Legendary
Offline
Activity: 2492
Merit: 11049
There are lies, damned lies and statistics. MTwain
|
|
August 25, 2023, 04:55:40 PM |
|
If anyone wants to read further on the matter depicted in the OP, these articles treat the topic in depth: https://www.group-ib.com/blog/cve-2023-38831-winrar-zero-day/https://www.bleepingcomputer.com/news/security/winrar-zero-day-exploited-since-april-to-hack-trading-accounts/The former link points to an article written by the guys that discovered the vulnerability, that has actually been around under active exploitation since April 2023 (as per their words). In essence, malicious zip files were spread through various routes, including trading and crypto forums. These zip files, when opened from Winrar, exploit the said Winrar vulnerability by: The cybercriminals are exploiting a vulnerability that allows them to spoof file extensions, which means that they are able to hide the launch of malicious script within an archive masquerading as a ‘.jpg’, ‘.txt’, or any other file format <…>
A ZIP archive was crafted to deliver various malware families: DarkMe, GuLoader, Remcos RAT These extra goodies allow scumbags to install keyloggers, capture screenshots, perform remote access and so forth. Here’s an example post on a well know bitcoin forum. It may actually look quite familiar …: As usual, we should never download/open files that have a dubious origin, even though one could say that the content of some of these files may seem innocent: It also seems wise to update Winrar now to the latest (patched) version.
|
|
|
|
nakamura12
|
|
August 25, 2023, 05:06:28 PM |
|
If Winzip or winrar is vulnerable to attacks then why not use different app that works the same as both apps you mentioned like 7zip or better go to the original website of winrar or winzip to download the app rather than downloading from a source that you yourself are not even sure if it's safe or not. That's the problem to some people where they downloaded the app from other source even though there's an original source where you can download the file. Well, if you are sure with your desktop then there are other ways to have a wallet that isn't vulnerable to hacks or attacks.
|
|
|
|
Crypt0Gore (OP)
|
|
August 25, 2023, 06:43:33 PM |
|
If you have Crypto above $10k, you should just buy a separate device with Linux on it to just operate your Wallet. Keep it disconnected from the Internet and just connect once you want to do a transaction or something. This way you can save a lot of money and prevent most of these attacks. You cannot be up to date with every new attack going on in the Cryptospace, so keeping your system generally safe should be the priority.
yeah even 5k is enough to have a wallet only pc. Phillipma1957 you know better about crypto wallets, and you know that some coins can't be kept on hardware wallet because they are not supported yet, for example, this new PoW coins like IronFish and few others, they have their separate blockchain and requires running their own windows wallet to receive your the coins from the exchange or through mining them. Also many people like running Nodes themselves to make more money, we can't do without windows PC when it comes to making money even if you have a hardware wallet, few things will keep making you to go back.
|
|
|
|
AakZaki
Legendary
Offline
Activity: 2338
Merit: 1084
zknodes.org
|
|
August 25, 2023, 08:52:24 PM |
|
If you know what you are doing, even a separate USB stick (with a live OS and so on) will do. But if you are a newbie and not that knowledgeable with computers too maybe, then hardware wallet should be your friend.
I used WinRAR many years ago. Now I see it as an outdated software, 7zip being superior. But I know many people that are so used to WinRAR they still have it. Thanks OP for the warning.
Like I used to use WinRar since I first owned a PC and didn't even have the intention to replace WinRar. But seeing that Winrar is quite vulnerable like that, then 7zip is a good choice for me to switch from Winrar. Of course there will be a few more vulnerabilities, rather than risk it is better to use one that has been proven safe.
|
|
|
|
|