ITPRO

Printed from www.itpro.co.uk

Register to receive our regular email newsletter at http://www.itpro.co.uk/reg/register.

The newsletter contains links to our latest IT news, product reviews, features and how-to guides, plus special offers and competitions.

Skip to navigation

    Hackers spam fake Microsoft security update

A clever attempt to take advantage of Microsoft’s ‘Patch Tuesday’.

By Asavin Wattanajantra, 14 Oct 2008 at 11:53

Hackers are taking advantage of Patch Tuesday with a malicious Trojan email disguised as a Microsoft security update.

The email claims to come from Steve Lipnser at the address securityassurance@microsoft.com with the subject line “Security Update for OS Microsoft Windows.” It asks you to run the file attached with the message and appears to coincide with Microsoft’s genuine monthly patch cycle.

Microsoft never sends out security updates as email attachments, but the email tries to explain this by claiming it is “an experimental private version.”

Graham Cluley, senior technology consultant at Sophos, said that running the attached file would infect Windows computer users with the Mal/EncPK-CZ Trojan horse and give hackers control of the PC.

He advised users: “They should always visit the genuine Microsoft website or use automatic updating processes to keep their systems current.”

The fake update comes after Microsoft gave advanced notice of its monthly patch cycle for the first time.

A picture of the fake update is here.

Email to a friend

Print this page

Social Bookmark this article: What is this?

Add to: DiggDigg
Add to: Del.icio.usDelicious
Add to: RedditReddit
Add to: StumbleUponStumbleUpon
Add to: SlashdotSlashdot
Add to: GoogleGoogle
Add to: FacebbokFacebook

Be the first to comment on this article

You need to Login or Register to comment.

    Related stories

    Related Tags

update Trojan hacker spam Patch Tuesday Microsoft
advertisement

    Latest Security Features

Who should be Britain’s cyber security czar?

Experts reveal what a UK head of cyber security would need to do, while we put forward possible candidates for the role.

Read more

 

More Security Features

    Latest Security Reviews

HP BladeSystem c3000

HP BladeSystem c3000 review: blade server

Rating: 5

Built like a tank and not weighing much less, Dave is relieved that this floor standing ‘data-centre in a box’, comes on wheels.

Read more

 

More Security Reviews

advertisement

    Latest News Videos in Security

Eugene Kaspersky

Video: Mobile security threats and Mac complacency

Play Video: Mobile security threats and Mac complacency   Play

Part two: Eugene Kaspersky, chief executive and founder of Kaspersky Lab, talks about the increasing security threats mobile users are facing.

 

    Blogs

Would James Bond have had a Facebook account?

Read more

 

    Whitepapers

Want more background on today's hottest IT trends?

Visit IT PRO's whitepaper library for more on virtualisation, encryption and other topics.

    Register for IT PRO

You'll get exclusive member benefits including free whitepapers, downloads, Webinars and weekly newsletters full of the latest IT PRO news, reviews, insight and expertise.

Register
Advertisement