Results 1 to 6 of 6

Thread: Fake Windows Security Bulletin Notifications Link to Malware

  1. #1
    leofelix is offline Member
    Join Date
    Oct 2008
    Location
    Italy
    Posts
    1,668

    Default Fake Windows Security Bulletin Notifications Link to Malware

    Fake Windows Security Bulletin Notifications Link to Malware

    It's not a critical update, it's malware


    Malware distributors continue resorting to the fake software update lure for their email spam campaigns. The latest attack poses as a notification regarding a Windows security bulletin, which links to a malicious executable.

    The rogue emails impersonate Steve Lipner, Microsoft’s Director of Security Assurance, who allegedly informs the receiver about a high-priority security update for all versions of Windows. "Please notice that Microsoft company has recently issued a Security Update for OS Microsoft Windows. The update applies to the following OS versions: Microsoft Windows 2000, Microsoft Windows Millenium [sic], Microsoft Windows XP, Microsoft Windows Vista and Microsoft Windows 7," the fake message reads. (CUT)


    As expected, the email goes on to recommend that the security update be installed immediately and provides a link to download it. It even tries to explain the reason for the message reaching your inbox in the first place, by claiming that "your computer is set to receive notifications when new updates are available."

    The Windows-KBxxxxx-ENU.exe executable file linked in the email is generically detected by Sophos as Mal/EncPK-LL.....
    more:

    Fake Windows Security Bulletin Notifications Link to Malware - It's not a critical update, it's malware - Softpedia



    an evergreen old story

  2. #2
    Cithel is offline Senior Member
    Join Date
    Nov 2009
    Location
    Omaha, Nebraska USA
    Posts
    168

    Default

    Thanks for the heads up Leo.

  3. #3
    rkonit's Avatar
    rkonit is offline Gold Member
    Join Date
    Jul 2008
    Location
    Pilani, India
    Posts
    1,363

    Default

    Thanks Leo !!! BTW Windows 7 has Action Center instead of Security Center, that doesn't show Windows Security Bulletin Notifications using Red Marked Shield Icon.

    If you gets any Red Marked Shield Icon, Use Good AV/Anti Mal-ware program.

    For more information about Action Center notification, visit - Feature Focus: Action Center

  4. #4
    seti is offline Member
    Join Date
    Nov 2008
    Posts
    1,923

    Default

    I only use Windows update to keep myself updated. I also do not take any notice of other emails about security updates unless they come via Secuirty Garden and then Corrine tends to place it elsewhere so we know to trust it.

  5. #5
    leofelix is offline Member
    Join Date
    Oct 2008
    Location
    Italy
    Posts
    1,668

    Default

    @ seti: I've recieved the same mail apparently from Microsoft in italian, a very poor italian.
    I deleted it directly from server, of course

    It is an old trick, but unfortunately not all the Windows users know Microsoft never send critical patches via e-mail.

    This tactic is called social engeneering

  6. #6
    seti is offline Member
    Join Date
    Nov 2008
    Posts
    1,923

    Default

    Quote Originally Posted by leofelix View Post
    @ seti: I've recieved the same mail apparently from Microsoft in italian, a very poor italian.
    I deleted it directly from server, of course

    It is an old trick, but unfortunately not all the Windows users know Microsoft never send critical patches via e-mail.

    This tactic is called social engeneering
    I take your point my friend exactly and am glad that you posted this here. That is the good thing about this forum is to remind everyone what is happening. I have never known MS to send anything out that I have not signed up

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •  

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22