More threads by David Baxter PhD

David Baxter PhD

Late Founder
Don't Update With That Update.exe

Some malware authors are still fond of using the good old techniques to spread their wares. One of these techniques is to send e-mail messages with "Security Updates", released by a well-known software vendor.

Today we received multiple reports about a message claiming to be a "Critical Security Update" from Microsoft. The message had a ZIP archive with a trojan downloader inside.

To become infected a user needs to extract the trojan's file and to run it. It should be noted that unlike Swen's message, this fake update message does not even look legitimate, so we are not going to see a lot of real infections.

Admin note: Microsoft never distributes updates this way. If you receive any email claiming to be an update from Microsoft or any other software installed on your computer, it's safe to ignore it as fake.

You may receive emails from certain software producers notifying you that updates are available. Even then, check the link in the email very carefully before clicking it.
 

Similar threads

August 31, 2012 We've updated the [Microsoft Services Agreement], which governs many of our online services - including your Microsoft account and many of our online products and services for consumers, such as Hotmail, SkyDrive, Bing, MSN, Office.com, Windows Live Messenger, Windows Photo Gallery, Windows Movie Maker, Windows Mail Desktop, and Windows Writer. Please read over the new Microsoft Services Agreement [here] to familiarize yourself with the changes we've made. Microsoft...
Replies
0
Views
1K
Microsoft: Update Java or kill it By Emil Protalinski, ZDNet July 26, 2012 Summary: Microsoft is offering advice on how to protect yourself from Java-based malware. The instructions are simple: either update it, disable it, or just uninstall it completely. Microsoft has decided is enough is enough: Java-based malware sees no end and it's time to do something about it. The software giant points to two type-confusion vulnerabilities (CVE-2012-0507 and CVE-2012-1723) that have been...
Replies
0
Views
1K
MS10-015 Restart Issues Are the Result of Rootkit Infection by Dennis Fisher February 18, 2010 Microsoft on Thursday confirmed that the "blue screen of death" (BSOD) issues that affected a slew of users after the latest batch of Patch Tuesday updates is the result of an existing infection by the Alureon rootkit. There was widespread speculation after the patch release that simply installing the MS10-015 update was causing the BSOD condition on some Windows 32-bit machines. However...
Replies
0
Views
2K
Clinical Update 2020: Lamotrigine (Lamictal) and Pregnancy Ruta Nonacs, MD PhD, MGH Center for Women's Mental Health July 28th, 2020 Maintenance treatment with a mood stabilizer during pregnancy can significantly reduce the risk of relapse in women with bipolar disorder; however, many of the mood stabilizers commonly used in this setting, including lithium and valproic acid, carry some degree of teratogenic risk. In contrast, lamotrigine (Lamictal) appears to be a much safer option...
Replies
0
Views
972
Clinical Update 2020: Duloxetine and Pregnancy By Ruta Nonacs, MD, PhD, MGH Center for Women's Mental Health February 25, 2020 Women face difficult choices when deciding whether or not to continue psychiatric medications during pregnancy. For many years, we have typically recommended the older antidepressants, including the selective serotonin reuptake inhibitors or SSRIs such as fluoxetine (Prozac), citalopram (Celexa), and sertraline (Zoloft), because we had the most robust data on...
Replies
0
Views
3K
Top