Microsoft Security Bulletin Email



There is a trojan making the rounds that is acquired by clicking on links in an email. That’s not necessarily new, however…. this email represents itself as an authentic-looking Microsoft security bulletin and the links are supposedly to updates (sorted by Windows version.) It’s important to point out that Microsoft does not send registered users security notices in this manner and if you are concerned about security updates you should either enable automatic updates or visit http://windowsupdate.microsoft.com


The trojan installer looks reasonably authentic (“Welcome to microsoft Security Update Installation”) (they don’t use that exact verbage, but an uninitiated user wouldn’t likely now.) It has a legit looking EULA and a reboot notice at the end. The trojan itself is not yet detected by several scanners…. (AVG, Avast, McAfee, Norman, NOD32v2, TheHacker) It is detected by clamav as Trojan.Spy.W32.Luhn and Symantec as Trojan.dropper.

Luhn seems to be a popular name component from several AV vendors (this according to Sunbelt’s passing the bug through virustotal.)

So, be careful what emails you trust to click links on.

Related Posts

Blog Traffic Exchange Related Posts
  • Microsoft Outlook - duplicate email messages Part I This will likely be a multi-part story because it turns out the solution was one of the more obscure things I think I've run into AND I thought it was worth "dumping" everything I found out in the process here for my own reference and anyone else wandering through. I......
  • Microsoft to release 6 updates Tuesday August 9th According to this release, expect to see 6 updates coming out from Microsoft Tuesday. One will be tagged critical from what I read. It seems like this is a bit large number this time around, but still it could be worse, prepare for patching. Update - 8/5/05 I see Security......
  • Two critical fixes from Microsoft on December patch Tuesday December's rendition of Microsoft's monthly Patch Tuesday will feature two critical security fixes. The malicious software removal tool will also be updated... Additionally, Microsoft will issue two non-security high-priority updates through Windows Update and Software Update Services, and three non-security high-priority updates through Microsoft Update and Windows Server Update Services.......
Blog Traffic Exchange Related Websites
  • What is Patch Tuesday? Excellent explanation of Patch Tuesday by TMI Engineering Patch Tuesday is the second Tuesday of each month, the day on which Microsoft releases security patches. Starting with Windows 98, Microsoft included a "Windows Update" system, that would check for patches to Windows and its components which Microsoft would release intermittently. With......
  • How To Avoid Internet Phishing Scams Phishing is a type of fraud whereby criminal attempts to trick their victim into accepting a false identity presented by the criminal. Phishers use e-mail or fake website to steal your private information. If you don't want to be the next victim of identity theft then you can protect yourself......
  • Malware found in Lenovo software package Hii, I just got the news. Computer maker Lenovo is shipping a malware-infected software package to Windows XP users, according to warning from anti-virus researchers at Microsoft. The malicious file was identified by Microsoft as Win32/Meredrop, a Trojan dropper that is used to install and execute multiple malicious executables on......
www.pdf24.org    Send article as PDF   

Similar Posts


See what happened this day in history from either BBC Wikipedia
Search:
Keywords:
Amazon Logo

Comments are closed.


Switch to our mobile site