Microsoft Disables App Installer After Feature is Abused for Malware

Microsoft has disabled the ms-appinstaller URI scheme in its App Installer to counter the abuse of the feature by threat actors using it for malware distribution. Researchers found this method often bypasses security measures like Microsoft Defender SmartScreen. Hackers used phishing techniques to get people to download malicious apps that could lead to ransomware distribution. The move requires users to manually install the MSIX package after downloading it to a storage device, providing added security.