BlogThe MSIx Experts Crib
RSS
#SecurityReturn to blog home page
The notepad plus plus attack explained
The notepad plus plus attack explained

How the Notepad++ Updater Attack Worked

In early 2026, reports disclosed that the update mechanism for Notepad++ had been compromised.

See author's page
Alex Marin

February 17th, 2026 · 7min read

#SECURITY
What is sbom and how to integrate it for software security
What is sbom and how to integrate it for software security

What Are SBOMs and How to Integrate Them into Your Software Packages

Everything’s moving so fast in tech right now—security and transparency really need to be top priorities. As part of implementing the National Cyber Strategy released by the White House in 2023, the U.S. government issued best practices instructing developers who sell apps to the public sector to include Software Bills of Materials (SBOMs) with their software packages.

See author's page
Alex Marin

April 25th, 2025 · 8min read

#SECURITY
Advanced installer security fixes retrospective
Advanced installer security fixes retrospective

A Retrospective of Advanced Installer’s Security Fixes

At Advanced Installer, security is our top priority—we take every necessary step to keep our products secure. When a vulnerability is discovered, we immediately investigate and resolve the issue.

See author's page
Danut Ghiorghita

March 4th, 2025 · 6min read

#SECURITY
Trusted signing integration
Trusted signing integration

Trusted Signing Integration

Digital Signing should be a formality for professionals. It’s been almost 30 years since the first software was digitally signed but we still have many users who don’t know how or why they should use a code signing certificate. We need it to protect their intellectual property and enhance the cybersecurity of their end-users.

See author's page
Bogdan Mitrache

April 19th, 2024 · 4min read

#MSI #MSIX #CODE-SIGNING #AUTHENTICODE #DIGITAL-SIGNATURE #SECURITY
From msi to msix app deployment
From msi to msix app deployment

The MSI to MSIX Shift in Application Deployment

MSIX is a game-changer for software application distribution. However, it’s not all smooth sailing - there are challenges to face. A big one? Configuring your application.

See author's page
Renato Ivanescu

February 5th, 2024 · 4min read

#MSI #MSIX #SECURITY
Exe local directory vulnerability solution
Exe local directory vulnerability solution

Investigation and Resolution of .exe.local Directory Vulnerabilities

At Advanced Installer, security is not just a feature; it's a core value. We are dedicated to protecting our users' data, intellectual property, and overall digital well-being. Our commitment extends to every aspect of our product, offering a secure and reliable environment for installation and deployment needs.

See author's page
Danut Ghiorghita

January 12th, 2024 · 6min read

#SECURITY
Secure install properties guide
Secure install properties guide

Enhancing Software Security: A Guide to Secure Install Properties with Advanced Installer

In today's world, where digital security is crucial, installing new software on your computer should be straightforward and secure.

See author's page
Radu Popescu

December 12th, 2023 · 5min read

#SECURITY
Ev code signing vs regular code signing
Ev code signing vs regular code signing

Why EV Code Signing? EV Code Signing vs. Regular Code Signing

By now, we all know the importance of a digital signature to secure our applications and how standard code signing certificates work.

See author's page
Radu Popescu

January 13th, 2023 · 5min read

#SECURITY
Smart app control windows 11 compatibility
Smart app control windows 11 compatibility

Your app installation is 100% SAC compatible with Advanced Installer

With the release of Windows 11 Insider Preview Build 22567, Microsoft added a new security feature called Smart App Control (or SAC in short).

See author's page
Alex Marin

July 21st, 2022 · 5min read

#NEWS #SECURITY
Security updates auto updater
Security updates auto updater

Important Security Updates for the Advanced Installer Auto Updater

Continuously managing security improvements and updates, as we do at Advanced Installer, should be your top priority.

See author's page
Alexandra Stoienescu

June 9th, 2022 · 2min read

#NEWS #UPDATE #UPDATER #SECURITY
Device guard signing integration
Device guard signing integration

Advanced Installer Enables Enterprise Security directly from the installer package

Starting with version 17.3, Advanced Installer natively supports Device Guard Signing. This feature is of most use for the vendors to prepare their software product installers to be used in enterprise environments.

#SECURITY #MSIX #NEWS
Banner false positive
Banner false positive

False positive virus detection

False positives virus detection is a common occurrence when installing software; learn why they happen and how you might prevent them, before deploying your application to your users.

See author's page
Horatiu Prica

April 24th, 2018 · 2min read

#SECURITY #TIPS

Antivirus Whitelisting Pains

If you're a software vendor doing multiple releases a year, you're bound to hit (and hate) this problem - false-positive detection by antivirus solutions. It's just one of the neverending problems of ISVs that's eating a chunk of our time, without any ROI.

See author's page
Bogdan Mitrache

December 7th, 2016 · 4min read

#TIPS #SECURITY #NEWS

Installer Vulnerability Update

A vulnerability in all Windows OSes allows a malicious DLL to hijack your EXE installer upon launch. While the EXE shows your legitimate digital signature the attacker DLL will be able to run in the background.

#SECURITY #NEWS