Microsoft Security Bulletin Email



There is a trojan making the rounds that is acquired by clicking on links in an email. That’s not necessarily new, however…. this email represents itself as an authentic-looking Microsoft security bulletin and the links are supposedly to updates (sorted by Windows version.) It’s important to point out that Microsoft does not send registered users security notices in this manner and if you are concerned about security updates you should either enable automatic updates or visit http://windowsupdate.microsoft.com


The trojan installer looks reasonably authentic (“Welcome to microsoft Security Update Installation”) (they don’t use that exact verbage, but an uninitiated user wouldn’t likely now.) It has a legit looking EULA and a reboot notice at the end. The trojan itself is not yet detected by several scanners…. (AVG, Avast, McAfee, Norman, NOD32v2, TheHacker) It is detected by clamav as Trojan.Spy.W32.Luhn and Symantec as Trojan.dropper.

Luhn seems to be a popular name component from several AV vendors (this according to Sunbelt’s passing the bug through virustotal.)

So, be careful what emails you trust to click links on.

Related Posts

Blog Traffic Exchange Related Posts
  • Microsoft to release 6 updates Tuesday August 9th According to this release, expect to see 6 updates coming out from Microsoft Tuesday. One will be tagged critical from what I read. It seems like this is a bit large number this time around, but still it could be worse, prepare for patching. Update - 8/5/05 I see Security......
  • Google the most recent phishing target This reminds me of the emails that used to circulate claiming that Microsoft and Disney were testing a way to trace email and to keep forwarding the message, when it got to 500 people they all supposedly would win a trip to DisneyWorld. I guess people are generally trusting and......
  • Microsoft Updates Malicious software removal tool for zotob I just read that Microsoft has released an update to the Malicious software removal tool. The updated version is not yet available at Windows or Microsoft update, but from Microsoft's download center. It should be able to deal with the following new bugs... * Zotob.A * Zotob.B * Zotob.C *......
Blog Traffic Exchange Related Websites
  • Microsoft Office 2008 12.2.5 Update for Mac OS X Microsoft has released security bulletin MS10-038. This security bulletin contains all the relevant information about the security updates for Microsoft Office 2008 for Mac OS X.  To view the complete security bulletin, visit the following Microsoft website: http://www.microsoft.com/technet/security/bulletin/ms10-038.mspx This update improves security. It includes fixes for vulnerabilities that an attacker......
  • Nike Blog Review This is a review of the Nike Blog at inside.nikebasketball.com Every few days, Nike updates their inside.nikebasketball.com blog. The posts they provide are relevant for the fans of Nike, and they write in a very well written and interest keeping manner. Despite this, the blog is very difficult to find......
  • Malware found in Lenovo software package Hii, I just got the news. Computer maker Lenovo is shipping a malware-infected software package to Windows XP users, according to warning from anti-virus researchers at Microsoft. The malicious file was identified by Microsoft as Win32/Meredrop, a Trojan dropper that is used to install and execute multiple malicious executables on......
www.pdf24.org    Send article as PDF   

Similar Posts


See what happened this day in history from either BBC Wikipedia
Search:
Keywords:
Amazon Logo

Comments are closed.


Switch to our mobile site