+ Post New Thread
Results 1 to 2 of 2
IT News Thread, Beware Of Fake Microsoft Updates Coming Through E-Mail in Other News; ...
  1. #1

    DaveP's Avatar
    Join Date
    Oct 2006
    Can't talk now: The mother-ship is calling!
    Thank Post
    Thanked 1,349 Times in 927 Posts
    Blog Entries
    Rep Power

    Beware Of Fake Microsoft Updates Coming Through E-Mail

    This notification from Sophos:

    Email is still the most common method used for security update notifications from all major vendors, but it is also the most commonly used trigger for launching the chain of infection attacks by malware writers. When I came to work today I found in my Inbox a message from Microsoft with the Security Bulletin Advance Notification for December. I immediately clicked on one of the links to visit the yet to be published December Security Bulletin and investigate how many critical vulnerabilities will be fixed this month.
    Investigating advanced security notifications is important for us in SophosLabs. It may give us warnings of potential new attack vectors as well as rough estimates of amount of work while analysing the latest vulnerabilities and writing the analysis for next week. This month we are expecting three critical vulnerabilities that may result in remote code execution. Three disclosed critical vulnerabilities is not many, compared with some of the previous months. It seems that the vulnerabilities in Microsoft products are getting more difficult to find. Hopefully, the patch for the recently discovered IE vulnerability will also be released.
    Following the first message from Microsoft there are two emails from Apple Product Security team announcing availability of security updates for Java for Mac and after them another message coming directly from Steve Lipner, Microsoft’s Director of Security Assurance. What an honour I thought, but then the content seemed to ring a bell.

    The email contains a direct link to an alleged update executable file Windows-KBxxxxx-ENU.exe which immediately set the malware alarm off, since original Microsoft emails never directly link to an executable file or have an executable attached...

    Blog link: Beware of fake Microsoft updates coming through email

    Source: Sophos Labs Blog

  2. #2

    powdarrmonkey's Avatar
    Join Date
    Feb 2008
    Alcester, Warwickshire
    Thank Post
    Thanked 778 Times in 651 Posts
    Rep Power
    Which is precisely why Microsoft cryptographically sign the announcements. It doesn't take long to check the signature.

+ Post New Thread

Similar Threads

  1. Fake Facebook e-mail contains Trojan
    By DaveP in forum IT News
    Replies: 0
    Last Post: 27th October 2009, 07:36 PM
  2. MS Access to E-mail Updates?
    By PsychoTech83 in forum How do you do....it?
    Replies: 0
    Last Post: 9th February 2007, 11:29 AM
  3. Epson Projectors BEWARE!!!
    By katie.lawe in forum Bad Experiences
    Replies: 20
    Last Post: 21st October 2006, 09:41 PM
  4. Microsoft Update prevents Flash updates
    By ajbritton in forum Windows
    Replies: 0
    Last Post: 15th June 2006, 11:57 PM

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts