Windows 10 App installer process being exploited by threat actors — stay frosty
Bazar’s back, baby.
When you purchase through links on our site, we may earn an affiliate commission.Here’s how it works.
What you need to know
Scammers and threat actors attempting to cause trouble are nothing new in the world of computing, especially not in the Windows sector. So when we tell you there’s a dangerous Windows 10 swindle being called out, don’t be surprised.
The new scam’s been flagged bySophosLabs, which discovered the danger because it knocked directly on SophosLabs' door (viaZDNet). Weird emails arrived at Sophos inboxes, using the usual blend of poorly composed, threatening speech and a request to click something sketchy.
If you click what the email tells you to click, you’re brought to a webpage where you’ll be prompted to preview a seemingly harmless PDF. Of course, that “PDF preview” is anythingbutharmless and binds you to a link starting with the ms-appinstaller: prefix, which summons Windows 10’s AppInstaller.exe tool, kickstarting a download-and-run process that’ll put you in a bad place very quickly. From there, you’ll have to deal with the dangers of malware BazarBackdoor, including data and credential theft.
The novel part of this whole situation is the abuse of the Windows 10 App installer process. The other elements, and the broad strokes of the overall attack, are old hat to anyone who’s been around PCs. You know the rules: Sketchy emails? Ignore. Dodgy links? Don’t click. Do these two things and you’ll already have outwitted 99% of scammers out there. It doesn’t matter what iteration of Windows you’re on, either. You could be rockingWindows XPorWindows 11, and at the end of the day, if you don’t fall for the initial steps, you’ll be safe.
Get the Windows Central Newsletter
All the latest news, reviews, and guides for Windows and Xbox diehards.
Robert Carnevale is the News Editor for Windows Central. He’s a big fan of Kinect (it lives on in his heart), Sonic the Hedgehog, and the legendary intersection of those two titans, Sonic Free Riders. He is the author ofCold War 2395. Have a useful tip? Send it to robert.carnevale@futurenet.com.
