Security experts warn of fake Microsoft bulletin
By Matt Whipp
Posted on 29 Jun 2005 at 17:23
Finnish security experts F-Secure are warning of a fake Microsoft bulletin being spammed out since early this morning.
The email claims to be bulletin MS05-039, although June's patches were numbered -034. Microsoft never actually sends out security bulletins via email in any case, but the structure of the email is very close to that of a genuine bulletin description.
F-Secure says that the web address to which the email urges recipients to visit resides on a hacked server. Quite what a visitor will end up downloading from there still isn't clear, but the company says that bandwidth to that address is currently at full stretch, indicating that large numbers of victims are about to find out.
A similar ruse was tried in late 2003 in the form of the Swen worm, which again used professional presentation to ensure as many people as possible installed the malicious attachment.
From around the web
advertisement
- Chrome's shine getting lost in translation
- BytePac: the cardboard hard disk enclosure
- How tech loosens our grip on reality
- Hokum watch: Safer Internet Day
- Why I'm deleting Adobe from my PC
- Prepare to be patronised: it's Safer Internet Day
- Dear Sony, Samsung and every other tech company in the world: stop trying to be Apple
- Will Apple's Final Cut Pro X update placate the pros?
- Smartr Contacts for iPhone review
- Switching to Office 365's Outlook Web App
- Paying for your crimes with Bitcoin
- Pavement hacking: What it is and how to avoid it
- Google's risky pre-loaded pages
- Mac under attack: how secure is Apple's OS?
- Has your browser been hijacked?
- Can you send a truly anonymous email?
- Is it safe to send bank details over email?
- Sainsbury's Bank bans password storage
- MobileMe triggers credit card blocks
- How to stay safe against session hijacking
advertisement
Printed from www.pcpro.co.uk