Microsoft Security Bulletin Email



There is a trojan making the rounds that is acquired by clicking on links in an email. That’s not necessarily new, however…. this email represents itself as an authentic-looking Microsoft security bulletin and the links are supposedly to updates (sorted by Windows version.) It’s important to point out that Microsoft does not send registered users security notices in this manner and if you are concerned about security updates you should either enable automatic updates or visit http://windowsupdate.microsoft.com


The trojan installer looks reasonably authentic (“Welcome to microsoft Security Update Installation”) (they don’t use that exact verbage, but an uninitiated user wouldn’t likely now.) It has a legit looking EULA and a reboot notice at the end. The trojan itself is not yet detected by several scanners…. (AVG, Avast, McAfee, Norman, NOD32v2, TheHacker) It is detected by clamav as Trojan.Spy.W32.Luhn and Symantec as Trojan.dropper.

Luhn seems to be a popular name component from several AV vendors (this according to Sunbelt’s passing the bug through virustotal.)

So, be careful what emails you trust to click links on.

Related Posts

Blog Traffic Exchange Related Posts
  • Two critical fixes from Microsoft on December patch Tuesday December's rendition of Microsoft's monthly Patch Tuesday will feature two critical security fixes. The malicious software removal tool will also be updated... Additionally, Microsoft will issue two non-security high-priority updates through Windows Update and Software Update Services, and three non-security high-priority updates through Microsoft Update and Windows Server Update Services.......
  • How to Remove Cyber Security | Cyber Security Removal Guide Cyber Security is a rogue antivirus application. It is in the same family as totalsecurity (total security Removal Guide) and SystemSecurity. This software installs through web popups and trojan horse activity makes false claims about your system being compromised by viruses and other security problems, hijacks we browser activity claiming......
  • Google the most recent phishing target This reminds me of the emails that used to circulate claiming that Microsoft and Disney were testing a way to trace email and to keep forwarding the message, when it got to 500 people they all supposedly would win a trip to DisneyWorld. I guess people are generally trusting and......
Blog Traffic Exchange Related Websites
  • World Wide Web Security Essentials Is Not A Real Spyware Remover. It Resembles The Functions And Looks World wide web Security Essentials is not a real spyware remover. It resembles the functions and looks of genuine spyware removal software but has no capacity to eliminate any virus, trojan or malware. Web Security Essentials is the newest addition to the growing list of rogue Antivirus programs. Internet Security......
  • How to Get Blog Traffic in Five Steps Every blogger is looking to achieve the exact same thing: They are hoping to be read. There are millions of bloggers that give the idea a shot but then eventually give up because they feel like nobody is reading them. They feel like if they are unable to get blog......
  • How To Avoid Internet Phishing Scams Phishing is a type of fraud whereby criminal attempts to trick their victim into accepting a false identity presented by the criminal. Phishers use e-mail or fake website to steal your private information. If you don't want to be the next victim of identity theft then you can protect yourself......
www.pdf24.org    Send article as PDF   

Similar Posts


See what happened this day in history from either BBC Wikipedia
Search:
Keywords:
Amazon Logo

Comments are closed.


Switch to our mobile site