Microsoft Security Bulletin Email



There is a trojan making the rounds that is acquired by clicking on links in an email. That’s not necessarily new, however…. this email represents itself as an authentic-looking Microsoft security bulletin and the links are supposedly to updates (sorted by Windows version.) It’s important to point out that Microsoft does not send registered users security notices in this manner and if you are concerned about security updates you should either enable automatic updates or visit http://windowsupdate.microsoft.com


The trojan installer looks reasonably authentic (“Welcome to microsoft Security Update Installation”) (they don’t use that exact verbage, but an uninitiated user wouldn’t likely now.) It has a legit looking EULA and a reboot notice at the end. The trojan itself is not yet detected by several scanners…. (AVG, Avast, McAfee, Norman, NOD32v2, TheHacker) It is detected by clamav as Trojan.Spy.W32.Luhn and Symantec as Trojan.dropper.

Luhn seems to be a popular name component from several AV vendors (this according to Sunbelt’s passing the bug through virustotal.)

So, be careful what emails you trust to click links on.

Related Posts

Blog Traffic Exchange Related Posts
  • Microsoft to release 6 updates Tuesday August 9th According to this release, expect to see 6 updates coming out from Microsoft Tuesday. One will be tagged critical from what I read. It seems like this is a bit large number this time around, but still it could be worse, prepare for patching. Update - 8/5/05 I see Security......
  • Two critical fixes from Microsoft on December patch Tuesday December's rendition of Microsoft's monthly Patch Tuesday will feature two critical security fixes. The malicious software removal tool will also be updated... Additionally, Microsoft will issue two non-security high-priority updates through Windows Update and Software Update Services, and three non-security high-priority updates through Microsoft Update and Windows Server Update Services.......
  • How to Remove Cyber Security | Cyber Security Removal Guide Cyber Security is a rogue antivirus application. It is in the same family as totalsecurity (total security Removal Guide) and SystemSecurity. This software installs through web popups and trojan horse activity makes false claims about your system being compromised by viruses and other security problems, hijacks we browser activity claiming......
Blog Traffic Exchange Related Websites
  • How to Get Blog Traffic in Five Steps Every blogger is looking to achieve the exact same thing: They are hoping to be read. There are millions of bloggers that give the idea a shot but then eventually give up because they feel like nobody is reading them. They feel like if they are unable to get blog......
  • What is Patch Tuesday? Excellent explanation of Patch Tuesday by TMI Engineering Patch Tuesday is the second Tuesday of each month, the day on which Microsoft releases security patches. Starting with Windows 98, Microsoft included a "Windows Update" system, that would check for patches to Windows and its components which Microsoft would release intermittently. With......
  • Microsoft Office 2008 12.2.5 Update for Mac OS X Microsoft has released security bulletin MS10-038. This security bulletin contains all the relevant information about the security updates for Microsoft Office 2008 for Mac OS X.  To view the complete security bulletin, visit the following Microsoft website: http://www.microsoft.com/technet/security/bulletin/ms10-038.mspx This update improves security. It includes fixes for vulnerabilities that an attacker......
www.pdf24.org    Send article as PDF   

Similar Posts


See what happened this day in history from either BBC Wikipedia
Search:
Keywords:
Amazon Logo

Comments are closed.


Switch to our mobile site