cognitive cybersecurity intelligence

News and Analysis

Search

Financially motivated threat actors misusing App Installer

Microsoft Threat Intelligence has detected cyber threats distributing malware through the ms-appinstaller URI scheme (App Installer) since mid-November 2023. These threat actors, including Storm-0569, Storm-1113, Sangria Tempest, and Storm-1674, used the scheme to bypass malware protection measures due to its current implementation issues. In response, Microsoft has disabled the ms-appinstaller protocol handler by default.

Source: www.microsoft.com –

Subscribe to newsletter

Subscribe to HEAL Security Dispatch for the latest healthcare cybersecurity news and analysis.

More Posts

A Better Connected Care Journey

The article urges healthcare organizations to move towards integrated, digitally enabled care delivery, replacing outdated point solutions. It acknowledges some may need help overcoming hurdles.