Microsoft Fixes Windows zero day issue used to spread Emotet malware.

Microsoft has released a patch for immediate install to stop the spread of Emotet malware.

The most critical of these fixes is a windows AppX installer spoofing vulnerability that could be exploited to achieve arbitrary code execution. This could have led to an elaborate attempt at downloading phishing malware. Which would take hold of your system and possibly hold you for ransom.

This particular vulnerability is specially crafted from a malware family known as Emotet/Trickbot/Bazaloader. The development comes as Emotet malware campaigns are witnessing a surge in activity after more than a 10-month-long hiatus following a coordinated law enforcement effort to disrupt the botnet’s reach.

Patch summary:

  • Address multiple security vulnerabilities
  • Fixes a total of 67 flaws
  • 21 flaws in Chromium based Microsoft Edge Browser

What should you do about it?

To be secure from these it is important to keep your software up to date with the latest patches and be wary of threats like these, by being educated.

Please update your Windows environments. Or if you need help, contact Britec.