Microsoft Security Bulletin Email
There is a trojan making the rounds that is acquired by clicking on links in an email. That’s not necessarily new, however…. this email represents itself as an authentic-looking Microsoft security bulletin and the links are supposedly to updates (sorted by Windows version.) It’s important to point out that Microsoft does not send registered users security notices in this manner and if you are concerned about security updates you should either enable automatic updates or visit http://windowsupdate.microsoft.com
The trojan installer looks reasonably authentic (“Welcome to microsoft Security Update Installation”) (they don’t use that exact verbage, but an uninitiated user wouldn’t likely now.) It has a legit looking EULA and a reboot notice at the end. The trojan itself is not yet detected by several scanners…. (AVG, Avast, McAfee, Norman, NOD32v2, TheHacker) It is detected by clamav as Trojan.Spy.W32.Luhn and Symantec as Trojan.dropper.
Luhn seems to be a popular name component from several AV vendors (this according to Sunbelt’s passing the bug through virustotal.)
So, be careful what emails you trust to click links on.
Popularity: 1% [?]
Related Posts - Network Security guide for the home or small business network - Part 5 - Update your software Okay - so after the last article you've inventoried what software you use on a PC and you know what services (server's) the pc runs that you've told it to. You even know what passes as "normal" startup programs. Now it's time to put that to use. It's time to......
- Microsoft Updates for October and bugs on the loose Well, it's been a bit since a post here, but if you haven't already patch your systems with Microsoft update, as new updates were released yesterday. Incidents.org is reporting rumors of bugs in the wild. Everyone KNOWS the window between vulnerability and exploit is getting shorter and shorter, so if......
- The latest and greatest in Malware Removals I have started referring to malware more and more lately because the term virus doesn't exactly describe the pests I see on peoples machines and the terms spyware or adware aren't doing justice to some of these pests either. (There are many pieces of what I would consider malware that......
Related Websites - How To Avoid Internet Phishing Scams Phishing is a type of fraud whereby criminal attempts to trick their victim into accepting a false identity presented by the criminal. Phishers use e-mail or fake website to steal your private information. If you don't want to be the next victim of identity theft then you can protect yourself......
- Microsoft Office 2008 12.2.5 Update for Mac OS X Microsoft has released security bulletin MS10-038. This security bulletin contains all the relevant information about the security updates for Microsoft Office 2008 for Mac OS X. To view the complete security bulletin, visit the following Microsoft website: http://www.microsoft.com/technet/security/bulletin/ms10-038.mspx This update improves security. It includes fixes for vulnerabilities that an attacker......
- Nike Blog Review This is a review of the Nike Blog at inside.nikebasketball.com Every few days, Nike updates their inside.nikebasketball.com blog. The posts they provide are relevant for the fans of Nike, and they write in a very well written and interest keeping manner. Despite this, the blog is very difficult to find......
Similar Posts
- Another Massive ID theft ring
- New Beagle/Bagle variant?
- Community site to help users understand EULA’s better
- Microsoft February Patch day advance notice
- More testing on the second WMF exploit