MacMusic  |  PcMusic  |  440 Software  |  440 Forums  |  440TV  |  Zicos
microsoft
Recherche

Microsoft Disables MSIX Protocol Handler Abused in Malware Attacks

vendredi 29 décembre 2023, 22:20 , par Slashdot
Microsoft has again disabled the MSIX ms-appinstaller protocol handler after multiple financially motivated threat groups abused it to infect Windows users with malware. From a report: The attackers exploited the CVE-2021-43890 Windows AppX Installer spoofing vulnerability to circumvent security measures that would otherwise protect Windows users from malware, such as the Defender SmartScreen anti-phishing and anti-malware component and built-in browser alerts cautioning users against executable file downloads.

Microsoft says the threat actors use both malicious advertisements for popular software and Microsoft Teams phishing messages to push signed malicious MSIX application packages. 'Since mid-November 2023, Microsoft Threat Intelligence has observed threat actors, including financially motivated actors like Storm-0569, Storm-1113, Sangria Tempest, and Storm-1674, utilizing the ms-appinstaller URI scheme (App Installer) to distribute malware,' the company said.

Read more of this story at Slashdot.
Lire la suite sur Slashdot
https://it.slashdot.org/story/23/12/29/202248/microsoft-disables-msix-protocol-handler-abused-in-mal...

Voir aussi

microsoft Microsoft's HoloLens goes galactic in $19.8M augmented reality adventure TheRegister10 Jan
malware Microsoft PowerToys : la dernière mise à jour introduit un nouvel outil 01net10 Jan
threat Concurrence : Bruxelles veut « vérifier » l’alliance entre Microsoft et OpenAI ZDNet.fr10 Jan
msix Microsoft livre le premier Patch Tuesday de 2024 Génération-NT10 Jan
users Microsoft va intégrer ChatGPT dans le Bloc-notes de Windows 11 01net10 Jan
protocol Microsoft releases bug-fixing, security-bolstering KB5034122 update for Windows 10 BetaNews10 Jan
storm- Microsoft kicks off 2024 by releasing KB5034123 update for Windows 11 adding new lock screen options, security fixes and more BetaNews10 Jan
actors Europe's monopoly cops suddenly rather curious about Microsoft's $13B for OpenAI TheRegister 9 Jan
windows OpenAI : l'UE se penche sur l'investissement de Microsoft Génération-NT 9 Jan
handler Microsoft's New Battery is a Test of AI-Infused Scientific Discovery Slashdot 9 Jan
abused Discontinued and Unreleased Microsoft Peripherals Revived By Licensing Deal Slashdot 9 Jan
motivated Accessoires Microsoft : le clavier Sculpt, et d'autres, sont de retour ZDNet.fr 8 Jan
installer Microsoft to take workhorse app WordPad out back after 28 years BoingBoing 8 Jan
ms-appinstaller Upgrade your productivity in 2024 with Microsoft Office, which comes with a training course for $40! BoingBoing 7 Jan
attacks Will Microsoft Overtake Apple as the World's Most Valuable Company? Slashdot 7 Jan
microsoft Incase picks up Microsoft's discontinued range of keyboards, mice and other desktop gadgets BoingBoing 7 Jan
malware Discontinued Microsoft accessories revived under new Incase Designed by Microsoft branding BetaNews 7 Jan
threat Microsoft has completely killed off WordPad in Windows 11... and more apps will follow BetaNews 7 Jan
msix Become a Microsoft Office pro for a special $40 price PC World 7 Jan
users Save $169 on a lifetime license to Microsoft Windows 11 Pro and never look back BoingBoing 7 Jan
News copyright owned by their original publishers | Copyright © 2004 - 2024 Zicos / 440Network
Date Actuelle
sam. 18 mai - 10:29 CEST