National Cybersecurity Notification Center: WinRAR security vulnerability can bypass Windows security warnings and execute malicious software

Recently, the Japanese security team CSIRT exposed a security vulnerability in WinRAR that can bypass Microsoft Windows' Mark of the Web (MoTW) security mechanism, allowing users to execute malicious programs from the network without their knowledge, posing a serious security risk. The vulnerability is numbered CVE-225-31334. To actively address the network security challenges posed by WinRAR security vulnerabilities to my critical infrastructure, it is recommended to take the following measures from a technical perspective: firstly, comprehensively investigate the computer network devices involved in this vulnerability among WinRAR users and install the latest version in a timely manner. The second is to reset the WinRAR client configuration. Thirdly, it is recommended that WinRAR users avoid connecting to untrusted networks when handling sensitive data.