![](https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjFXwqmLGXkcS8H63nOj4cL0G9wkheyfbdt_wdMDxDGEN2TdBq1v7Mg0v-0cfUMdhRiwXfyw1gsVCrYv0Vd65DD9P21L_IxVVYjWXgOWHxBdCqo7jNKaS7TliOs5CE7fTgmwyvcWwXni7QYqjI05iOmT9QX9hag1bRwr9b8d6XIrzoUP5gFaL9715P4JrPo/s1600/app-install.jpg)
Microsoft on Thursday said it’s once again disabling the ms-appinstaller protocol handler by default following its abuse by multiple threat actors to distribute malware.
“The observed threat actor activity abuses the current implementation of the ms-appinstaller protocol handler as an access vector for malware that may lead to ransomware distribution,” the Microsoft Threat Intelligence
Source:: The Hackers News