Help - Search - Members - Calendar
Full Version: Pws-winpatch - Fake Ms Patch Being Spammed
BleepingComputer.com > Security > Breaking Virus & Security News
   
harrywaldron
May 30 2006, 12:41 PM
A new email threat has surfaced which contains a hostile URL that will download a password stealer agent. The email is spoofed to appear like it comes from Microsoft, however the company does not distribute updates in this manner. To stay safe, users should delete all copies of this without clicking on the URL in the email.

PWS-WinPatch - Fake MS Patch being Spammed
http://www.incidents.org/diary.php?storyid=1370
http://www.sophos.com/virusinfo/analyses/trojbeastpwsc.html
http://vil.mcafeesecurity.com/vil/content/v_139619.htm


COPY OF THE NEW TROJAN HORSE ATTACK BEING SPAMMED

QUOTE
From: Microsoft
Sent: Monday, 29 May 2006 7:16 AM
To: Victim
Subject: Microsoft WinLogon Service - Vulnerability Issue

Microsoft Coorporation

A new vulnerability has been discovered in the Microsoft WinLogon Service , that would allow an attacker to gain access to an unpached computer.

Since your email is part of our private mail lists and your have succesfully registered your Microsoft Windows , you can download the patch to fix this vulnerability before others do.

Please click the link below to download the patch and protect your computer against WinLogon attacks :

<< URL REMOVED>>

You are free to share this with all your friends and relatives that are using Microsoft Windows Operating System

Thank you

Microsoft Coorp.
quietman7
May 31 2006, 09:12 AM
For those that don't know, here's How to tell whether a Microsoft security-related e-mail message is genuine
This is a "lo-fi" version of our main content. To view the full version with more information, formatting and images, please click here.
Invision Power Board © 2001-2009 Invision Power Services, Inc.