News Karnataka
Thursday, May 09 2024
News Karnataka
Trending :
Chinese Zoo Paints Chow Chow Dogs Black & White to Pass them off as Pandas
Kalaburgi: Atanoor Gears Up for Grand Annual Fair of Nandishwara
Diet Blamed for Over Half of India’s Diseases: ICMR Pushes New Guidelines
Kerala Governor Arif Mohammad Khan visits Ram Temple
Crushing Defeat: LSG Owner’s Public Display of Frustration Raises Eyebrows
Technology

Microsoft Disables ‘App Installer’ Misused by Hackers

Sunday, December 31st, 2023 at 3:49 PM
Microsoft Disables 'App Installer' Used by Hackers
Photo Credit : IANS

New Delhi: Microsoft has disabled its ms-appinstaller URI scheme (App Installer) after observing that threat actors are using it to distribute malware.

According to a blog from Microsoft Threat Intelligence, the tech giant has been observing threat actors since mid-November 2023.

“Since mid-November 2023, Microsoft Threat Intelligence has observed threat actors, including financially motivated actors like Storm-0569, Storm-1113, Sangria Tempest, and Storm-1674, utilising the ms-appinstaller URI scheme (App Installer) to distribute malware,” Microsoft said.

“In addition to ensuring that customers are protected from observed attacker activity, Microsoft investigated the use of App Installer in these attacks. In response to this activity, Microsoft has disabled the ms-appinstaller protocol handler by default,” it added.

According to the tech giant, the observed threat actor activity abuses the current implementation of the ms-appinstaller protocol handler as an access vector for malware that may lead to ransomware distribution.

It also observed that multiple cybercriminals are selling a malware kit as a service that abuses the MSIX file format and ms-appinstaller protocol handler.

“These threat actors distribute signed malicious MSIX application packages using websites accessed through malicious advertisements for legitimate popular software. A second vector of phishing through Microsoft Teams is also in use by Storm-1674,” the company stated.

According to Microsoft, hackers have likely chosen the ms-appinstaller protocol handler vector because “it can bypass mechanisms designed to help keep users safe from malware, such as Microsoft Defender SmartScreen and built-in browser warnings for downloads of executable file formats”.

In mid-November of this year, Microsoft Threat Intelligence discovered many cyber gangs employing App Installer as a conduit for ransomware operations.

As mentioned in the report, the observed activity includes spoofing legitimate applications, luring users into installing malicious MSIX packages posing as legitimate applications, and evading detections on the initial installation files.

Read more:

Microsoft joins OpenAI’s board as Sam Altman returns as CEO

Microsoft unveils 2 custom-designed chips to drive AI innovations

Microsoft launches new initiative to advance cybersecurity protection

Share this:
IANS

Read More Articles
Download News Karnataka App for latest Karnataka News for Kannadigas across the globe.
MANY DROPS MAKE AN OCEAN
CLICK HERE to Know More
Support NewsKarnataka's quality independent journalism with a small contribution.
CLICK HERE to Subscribe Now

How useful was this post?

Click on a star to rate it!

Average rating 0 / 5. Vote count: 0

No votes so far! Be the first to rate this post.

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.
Nktv
Recent News
SSLC Exam Results Announced: Udupi District Tops the State

Bengaluru
Chinese Zoo Paints Chow Chow Dogs Black & White to Pass them off as Pandas

World
Kalaburgi: Atanoor Gears Up for Grand Annual Fair of Nandishwara

Kalaburgi
LSG owner Sanjeev Goenka in Heated Conversation with Skipper KL Rahul after loss against SRH

Sports
Editor's Pick
CCBI Releases Indian Edition of the “Dignitas Infinita”
08-05-2024, 5:08 PM Bengaluru
CCBI Releases “Norms for the Designation of National Shrines”
08-05-2024, 4:35 PM Bengaluru
St Theresa’s ICSE School Bendur Achieves Outstanding Results
06-05-2024, 6:00 PM Community
Nktv Live

To get the latest news on WhatsApp

Click Here