Microsoft Security Updates - Spoofing Attack - Security Protection

Common Tasks

Community

Email Notifications

Personal Links

Security Protection - Harry Waldron (CS)

Security Best Practices, Breaking News, & Updates

Microsoft Security Updates - Spoofing Attack

Microsoft and other vendors do not issue security updates using email messages, even though this new spoofed version appears to be realistic.

Microsoft Security Updates - Spoofing Attack
http://www.f-secure.com/weblog/archives/archive-072006.html#00000926

Copy of EMAIL message - HTML coding looks realistic
http://www.f-secure.com/weblog/archives/chto.gif

QUOTE: We've received several reports of a mass mailing that's going around. The messages have been spoofed to look like they are from Microsoft and arrive with title "Warning! New Virus On The Internet! Update Now!". The link in the mail goes to <<<URL REMOVED>>> and downloads an IRC backdoor. The downloaded file is detected as W32/FakeMSUpdate by our latest update

Posted: Jul 26 2006, 04:24 PM by Harry Waldron | with no comments

Questions? Contact Susan at Susan-at-msmvps.com. Each post's copyright held by the original author. All rights reserved. Blog site is an independent site not sponsored by Microsoft.
Our servers would like to thank www.ownwebnow.com and www.exchangedefender.com. We wouldn't be here without the generosity of Vlad Mazek and his companies.

Powered by Community Server (Commercial Edition), by Telligent Systems

Theme based on the Paperclip Blog Theme included in Community Server.
Enhanced to a Site-Wide Theme by Interscape Technologies.