Results 1 to 5 of 5

Thread: (Another) fake 'MS update'...

Threaded View

Previous Post Previous Post   Next Post Next Post
  1. 2010-01-26, 18:44 #1
    AplusWebMaster
    AplusWebMaster is offline
    Adviser Team AplusWebMaster's Avatar
    Join Date
    Oct 2005
    Location
    USA
    Posts
    6,881

    Thumbs down Don't update via email!

    FYI...

    Don't update via email!
    - http://securitylabs.websense.com/con...logs/3537.aspx
    01.25.2010 - "... spammers seem ready to pounce on the press attention towards the recent out-of-band release of MS10-002 to scare users into downloading fake updates via email. We have been seeing messages pushing a Microsoft update via a link...The URL in the spam messages leads to a file called "update2010.scr" which currently has low detection rates*... The site hosting these fake updates is located in the Netherlands, and we have also seen that it's hosting the same file, under a different extension, called "update2010.exe". The icon of the file, once downloaded, is also believable... Remember that Microsoft won't ever send messages for Windows updates, so please don't download and run this file. This probably won't be the only lure of this kind, so be diligent and remember not to click on links from unsolicited emails..."
    * http://www.virustotal.com/analisis/5...5c4-1264441334
    File update2010.scr received on 2010.01.25 17:42:14 (UTC)
    Result: 7/40 (17.50%)

    - http://www.microsoft.com/protect/fra...ng/Msname.aspx
    ... Microsoft does not send unsolicited communications about security updates
    Microsoft sends e-mail messages to subscribers of our security communications when we release information about a security software update or security incident. Unfortunately, cyber criminals can and have sent -fake- security communications that appear to be from Microsoft. Some of these messages lure recipients to Web sites to download spyware or other unwanted software. Others include a file attachment that contains a virus.
    How to help verify the legitimacy of a security-related e-mail
    • Legitimate notifications do -not- include software updates as attachments. We -never- attach software updates to our security communications. Rather, we refer customers to our Web site for complete information about the software update or security incident.
    • Legitimate notifications are also on Microsoft.com. We never send notices about security updates or incidents until after we publish information about them on our Web site. Check the Microsoft Security Updates page* to see whether the information is listed there.
    * http://www.microsoft.com/security/up...s/default.aspx

    Last edited by AplusWebMaster; 2010-01-27 at 03:41.
    The machine has no brain.
    ......... Use your own.
    Browser check for updates here.
    YOU need to defend against -all- vulnerabilities.
    Hacks only need to find -1- to get in...
    .
« Previous Thread | Next Thread »

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •  

Forum Rules