India’s cybersecurity agency has issued a warning about critical vulnerabilities in a popular file compressor tool used on millions of Windows devices. These flaws could allow attackers to execute malicious code, install malware, or gain unauthorized access if the software is outdated or compromised. Users are urged to update the tool immediately, ensure downloads are from official sources, and avoid opening compressed files from untrusted senders.
The vulnerabilities involve remote code execution and arbitrary file write, allowing attackers to craft malicious archives in formats like .zip, .rar, or .7z. Opening or extracting these files could trigger an exploit. The risk is heightened due to the software’s widespread use in various settings and the distribution of malicious files through emails, messaging apps, and free download sites.
Signs of potential threats include unexpected archive files from unknown sources, archives that prompt scripts or installers, and requests for elevated privileges. Older tool versions are particularly vulnerable, and even new installations can be risky if downloaded from unofficial sites.
Users are advised to update the tool from official sources, verify downloads using checksums or digital signatures, and strengthen Windows security by keeping antivirus software updated and enabling features like SmartScreen. Caution should be exercised when handling archives, such as scanning files before extraction and avoiding running executables directly from archives. Enterprises are encouraged to implement application allow-listing, block outdated versions, and monitor for suspicious activities.
