Hackers Exploit MSIX Windows App Packages to Spread Malware

Cybersecurity Researchers Uncover a New Malware Distribution Method

Cybersecurity experts have recently observed a concerning trend in the world of malware distribution. Hackers are exploiting MSIX Windows app package files to disseminate malicious software.

MSIX, a relatively new and unified packaging format, has gained favor among developers for its ability to create secure and high-performing applications that work seamlessly across various platforms.

Elastic Security Labs, a prominent name in the cybersecurity field, has reported instances of malicious actors distributing MSIX files by disguising them as well-known software platforms. These impersonated software includes familiar names like Google Chrome, Microsoft Edge, Brave, Grammarly, and Cisco Webex. While the exact channels for this distribution have not been confirmed, researchers suspect a blend of compromised websites, SEO poisoning, malvertising, social media, and phishing tactics.