Security News > 2022 > August > Windows 11 Smart App Control blocks files used to push malware
Smart App Control, a Windows 11 security feature that blocks threats at the process level, now comes with support for blocking several file types threat actors have recently adopted to infect targets with malware in phishing attacks.
"Windows 11 with smart app control blocks iso and lnk files that have mark of the web just like Macros," David Weston, Microsoft's VP for Enterprise and OS Security, tweeted on Tuesday.
When blocking a dangerous file using SAC, the system will open a foreground dialog with the following message: "Smart App Control blocked an app that may be unsafe. This file was blocked because files of this type from the internet can be dangerous."
Microsoft announced Smart App Control in April, with Weston describing it as a "Major enhancement to the Windows 11 security model" designed to allow only safe and reliable apps to open.
The most obvious of them is the fact that, at the moment, it can only be tested by Windows Insiders on systems running Windows 11.
All in all, besides some kinks that Microsoft should iron out until the feature reaches general availability for all Windows 11 customers, Smart App Control is a welcome addition to Windows 11, with a lot of promise.
News URL
Related news
- North Korean ScarCruft Exploits Windows Zero-Day to Spread RokRAT Malware (source)
- Russia targets Ukrainian conscripts with Windows, Android malware (source)
- Malware Campaign Uses Ethereum Smart Contracts to Control npm Typosquat Packages (source)
- New SteelFox malware hijacks Windows PCs using vulnerable driver (source)
- New CRON#TRAP Malware Infects Windows by Hiding in Linux VM to Evade Antivirus (source)