Home
Tech info
Technology
Science
Life
Application
Electric
Program
Mobile
Windows 10
Windows 11Microsoft patches vulnerability in Windows AppX Installer being used to spread Emotet malware
This vulnerability, tracked under code CVE-2021-43890, is related to Windows AppX Installer spoofing. Cybercriminals can remotely exploit this vulnerability with low user privileges. However, for successful exploitation, it is necessary to organize attacks of high complexity and require user (victim) interaction.
"We investigated reports of a rogue vulnerability in AppX Installer affecting Microsoft Windows. Microsoft discovered attacks attempting to exploit this vulnerability with specially crafted software packages. especially, including the famous Emotet malware," Microsoft shared.
According to Microsoft, hackers will create an attachment containing malicious code to use in phishing campaigns. Next, the hacker will spread this attachment in spam emails with content that entices users to open them.
How to not be affected by Windows AppX Installer vulnerability?
To prevent hackers, Windows users need to install a patched version of Microsoft Desktop Installer on their platform:
- Microsoft Desktop Installer 1.16 for Windows 10 version 1809 or later
- Microsoft Desktop Installer 1.11 for Windows 10 version 1709 or 1803
Microsoft also provides mitigations for customers who are unable to immediately install Microsoft Desktop Installer updates.
Those measures include enabling BlockNonAdminUserInstall to prevent non-Administrator users from installing Windows App packages and AllowAllTrustedAppToInstall to block installs from apps outside of the Microsoft Store.
Micah SotoYou should read it
- How to fix corrupted macOS installer errors
- Fix Opera installer crashes downloading on Windows
- Microsoft urgently patched zero-day vulnerability after 2 years of refusing to acknowledge it
- How to download a Windows installer, Office directly from Microsoft
- App Installer on Windows 10 was used to install BazarLoarder malware
- 'Printer Catastrophe' Vulnerability Threatens All Versions of Windows
- VMware patches RCE Spring4Shell vulnerability on a wide range of products
- Detects a vulnerability that threatens all Windows computers shipped from 2012 up to now
May be interested
- Add File/Folder to the exclusion list in Windows Security
how to add file or folder to the exclusion list in windows security? the fastest and simplest way to add exceptions to windows defender - Log4Shell zero-day vulnerability discovered, the new nightmare of enterpriseshow to exploit a critical zero-day vulnerability in the java-based apache log4j logging library has just been posted on the internet. this leaves users and businesses as well as organizations vulnerable to remote code execution attacks.
- Detecting a serious security flaw on Viber Desktop, users need to update immediatelythe research team of vncert/cc center recently issued a warning about a serious security hole in the viber desktop chat application - the viber chat application installed on users' computers, to the development team. viber products to fix.
- Why is Windows 11 so much more secure than Windows 10?windows 11 will be a more secure operating system than windows 10. microsoft's new focus on security in windows 11 will revolve around a few key features.
- Detecting an 8-year-old security flaw, affecting 150 HP printer modelsresearchers have discovered several security vulnerabilities affecting at least 150 models of hp multifunction printers (print, scan, fax).
- Detected Critical Security Bugs Affecting All Versions of Windowsa critical security vulnerability, affecting all versions of windows, has just been discovered. notably, there are indications that hackers have exploited this security hole to attack users.
Security solution
How to check if your PC is infected with Emotet malware- Microsoft allows users to reactivate Windows App installer
- Find bug in Emotet malware, prevent it from spreading for 6 months
- App Installer on Windows 10 was used to install BazarLoarder malware
- Microsoft Outlook Has a 'Severe' Vulnerability That Could Easily Spread Malware
How to check if your PC is infected with Emotet malware
Microsoft allows users to reactivate Windows App installer
Find bug in Emotet malware, prevent it from spreading for 6 months
App Installer on Windows 10 was used to install BazarLoarder malware
Microsoft Outlook Has a 'Severe' Vulnerability That Could Easily Spread Malware