WinRAR, a popular archiving utility, has had a zero-day vulnerability that hackers have been exploiting for at least three months. This exploit allows attackers to modify files without any indication of tampering. Common actions are redirecting customer trading URLs to malicious websites or inserting malicious code into original documents.