Upcoming Webinar
Understand How Your Peers Approach AD Forest Recovery
Join this webinar and not only learn about what your peers are doing, but also learn about a new patent-pending modern approach to AD forest recovery from Cayosoft.
New episode!
Unlocking the Secrets of App Security!
In this episode of UnplugIT, Stephen Rose talks to IT expert and technology engineer Sean Hurley about how to secure apps in the cloud.
Essential Eight + Microsoft 365 Backup Compliance
This download allows you to demonstrate exactly how the technology you use keeps customers covered and compliant.
UK Ransomware Guidelines + M365 Backup Compliance
This download allows you to demonstrate exactly how the technology you use keeps customers covered and compliant.

Smart App Control Can Now Block More File Types on Windows 11

Microsoft has unveiled some security enhancements for the Smart App Control feature in Windows 11. David Weston, Microsoft’s VP for Enterprise and OS Security, announced yesterday that Smart App Control has been updated to support more malicious file types, including ISO and LNK files.

Microsoft started testing the Smart App Control feature with Insiders in Windows 11 build 22567 in March. It enables users to automatically block potentially untrusted or malicious applications from running on Windows 11 devices. The feature uses AI and code signing to intelligently predict malicious behavior that could cause the device to run slowly, show ads, and install bloatware.

In addition to ISO and LNK, Bleeping Computer notes that Smart App Control can block the execution of several other file extensions. These include IMG, VDH, VHDX, .appref-ms, BAT, CMD, CHM, CPL, JS, JSE, MSC, MSP, REG, VBE, VBS, and WSF files.

Once blocked, Windows 11 users will see the following message on the screen: “Smart app Control blocked an app that may be unsafe. This file was blocked because files of this type from the internet can be dangerous.”

Smart App Control Can Now Block More File Types on Windows 11

Windows 11’s Smart App Control update boosts protections against phishing campaigns

Microsoft has yet to provide details about file types that are blocked by Smart App Control on Windows 11. On Twitter, Microsoft’s Jeffery Sutherland said that a full list of all restricted file extensions will be published soon.

https://twitter.com/j3ffr3y1974/status/1554580790570323970?s=20&t=UQ5k3MzuptmmIe_ZKuKOqg

It is important to note that this move comes shortly after Microsoft blocked VBA macros by default in Office apps. It helped to significantly decrease the number of macros-enabled attacks during the past few months. However, threat actors have started using other file types in phishing campaigns, such as ISO, RAR, and Windows Shortcut (LNK) files.

Overall, it’s great to see that Microsoft is introducing new security capabilities to protect Windows 11 users from ransomware campaigns and other threats. The Smart App Control feature is expected to become generally available in Windows 11 version 22H2 later this year.

by Rabia Noureen
Last Update: Sep 28, 2022
Aug 4, 2022

Rabia comes from a solid IT background and has been writing professionally about Microsoft products and other technology for four years. Rabia has also written for OnMSFT.com as well as Windows Report. She is always up to date on the latest trends in...

Upgrade to Windows 11 – The Road Ahead

Nov 28, 2023
What is a Roaming User Profile on Windows?

Sep 1, 2023
Oct 24, 2023
How to Configure Windows LAPS in an Azure Active Directory Scenario

May 3, 2023
Jul 17, 2023

Take our survey

PETRI NEWSLETTERS

Join Petri Insider

Create a free account today to participate in forum conversations, comment on posts and more.