Home
Wifi Tips
Fix Computer
Windows 10
Windows 11
Artificial Intelligence
Space Science
Strange story
Microsoft patches vulnerability in Windows AppX Installer being used to spread Emotet malware
Microsoft has patched a critical zero-day vulnerability in Windows that is being exploited by cybercriminals to spread Emotet malware.
This vulnerability, tracked under code CVE-2021-43890, is related to Windows AppX Installer spoofing. Cybercriminals can remotely exploit this vulnerability with low user privileges. However, for successful exploitation, it is necessary to organize attacks of high complexity and require user (victim) interaction.
"We investigated reports of a rogue vulnerability in AppX Installer affecting Microsoft Windows. Microsoft discovered attacks attempting to exploit this vulnerability with specially crafted software packages. especially, including the famous Emotet malware," Microsoft shared.
According to Microsoft, hackers will create an attachment containing malicious code to use in phishing campaigns. Next, the hacker will spread this attachment in spam emails with content that entices users to open them.
How to not be affected by Windows AppX Installer vulnerability?
To prevent hackers, Windows users need to install a patched version of Microsoft Desktop Installer on their platform:
- Microsoft Desktop Installer 1.16 for Windows 10 version 1809 or later
- Microsoft Desktop Installer 1.11 for Windows 10 version 1709 or 1803
Microsoft also provides mitigations for customers who are unable to immediately install Microsoft Desktop Installer updates.
Those measures include enabling BlockNonAdminUserInstall to prevent non-Administrator users from installing Windows App packages and AllowAllTrustedAppToInstall to block installs from apps outside of the Microsoft Store.
You've just finished reading the article "Microsoft patches vulnerability in Windows AppX Installer being used to spread Emotet malware" edited by the TipsMake team. You can save microsoft-patches-vulnerability-in-windows-appx-installer-being-used-to-spread-emotet-malware.pdf to your computer here to read later or print it out. We hope this article has provided you with many useful tech tips and tricks. You can search for similar articles on tips and guides. Thank you for reading and for following us regularly.
Micah Soto
- Find bug in Emotet malware, prevent it from spreading for 6 months
- App Installer on Windows 10 was used to install BazarLoarder malware
- Microsoft Outlook Has a 'Severe' Vulnerability That Could Easily Spread Malware
- The 4 most common ways to spread malware today
- Detection of Windows SmartScreen vulnerability being exploited to spread DarkGate malware
- 'Printer Catastrophe' Vulnerability Threatens All Versions of Windows