Home
Tech info
Technology
Science
Life
Application
Electric
Program
Mobile
Windows 10
Windows 11Microsoft patches vulnerability in Windows AppX Installer being used to spread Emotet malware
This vulnerability, tracked under code CVE-2021-43890, is related to Windows AppX Installer spoofing. Cybercriminals can remotely exploit this vulnerability with low user privileges. However, for successful exploitation, it is necessary to organize attacks of high complexity and require user (victim) interaction.
"We investigated reports of a rogue vulnerability in AppX Installer affecting Microsoft Windows. Microsoft discovered attacks attempting to exploit this vulnerability with specially crafted software packages. especially, including the famous Emotet malware," Microsoft shared.
According to Microsoft, hackers will create an attachment containing malicious code to use in phishing campaigns. Next, the hacker will spread this attachment in spam emails with content that entices users to open them.
How to not be affected by Windows AppX Installer vulnerability?
To prevent hackers, Windows users need to install a patched version of Microsoft Desktop Installer on their platform:
- Microsoft Desktop Installer 1.16 for Windows 10 version 1809 or later
- Microsoft Desktop Installer 1.11 for Windows 10 version 1709 or 1803
Microsoft also provides mitigations for customers who are unable to immediately install Microsoft Desktop Installer updates.
Those measures include enabling BlockNonAdminUserInstall to prevent non-Administrator users from installing Windows App packages and AllowAllTrustedAppToInstall to block installs from apps outside of the Microsoft Store.
Micah SotoYou should read it
- How to fix corrupted macOS installer errors
- Fix Opera installer crashes downloading on Windows
- Microsoft urgently patched zero-day vulnerability after 2 years of refusing to acknowledge it
- How to download a Windows installer, Office directly from Microsoft
- App Installer on Windows 10 was used to install BazarLoarder malware
- 'Printer Catastrophe' Vulnerability Threatens All Versions of Windows
- VMware patches RCE Spring4Shell vulnerability on a wide range of products
- Detects a vulnerability that threatens all Windows computers shipped from 2012 up to now
May be interested
- How to turn off Windows Installer to block MSI package
windows installer is a background service, which manages the installation and uninstallation of msi-based programs. to block the msi installer, you can turn off windows installer using group policy or edit the registry. - Serious vulnerability in Microsoft Word is being used by hackers to install malware on computersa zero day vulnerability in microsoft word is being exploited to install malware on windows machines.
- The spread of malware and how to prevent ityou often don't understand why viruses can infect your computer even though you have installed antivirus. so which routes have they spread and how to prevent them?
- Winos 4.0 Malware Warning: Protect Your Computer From Fake NSIS Installers!stealthy winos 4.0 malware variant is using a rogue nsis installer to launch multi-stage attacks.
- The unpatched Microsoft Word DDE vulnerability is exploited in a massive malware attacka new attack method that exploits the microsoft office integration feature has been discovered being used for malware distribution campaigns.
- A new kind of malware is spreading through Messenger and Skype spam messagesrecently, network security experts at avast security have warned of a new malware that attacks computers in two steps and spreads through messaging services like facebook messenger and skype.
- Windows 7 users need to install Microsoft patches immediately to fix BlueKeep security errorstoday, windows 7 or older users need to install important patches to fix recently discovered security bugs on older windows versions.
- Microsoft released an emergency security patch for a serious vulnerabilityif you are using windows os, install this security patch now.
- Fix Opera installer crashes downloading on Windowslike many other software programs, opera occasionally encounters technical problems. a common problem is when the installer gets stuck downloading on a windows system.
- Detecting malware infection campaign hidden in fake Windows 11 installerinternational security researchers have just issued an urgent notice about a sophisticated malicious attack campaign targeting windows users worldwide.
Security solution
- Add File/Folder to the exclusion list in Windows Security
- Log4Shell zero-day vulnerability discovered, the new nightmare of enterprises
- Detecting a serious security flaw on Viber Desktop, users need to update immediately
- Why is Windows 11 so much more secure than Windows 10?
- Detecting an 8-year-old security flaw, affecting 150 HP printer models
- Detected Critical Security Bugs Affecting All Versions of Windows
Add File/Folder to the exclusion list in Windows Security
Log4Shell zero-day vulnerability discovered, the new nightmare of enterprises
Detecting a serious security flaw on Viber Desktop, users need to update immediately
Why is Windows 11 so much more secure than Windows 10?
Detecting an 8-year-old security flaw, affecting 150 HP printer models
Detected Critical Security Bugs Affecting All Versions of Windows