India Broadband Forum


`Microsoft Security Update' is Trojan

This is a discussion on `Microsoft Security Update' is Trojan within the Computer Security forums, part of the Computer technology category; Hackers are trying to infect innocent computer users with a malicious Trojan horse disguised as a Microsoft security update, in ...

Go Back   India Broadband Forum > Computers > Computer technology > Computer Security

`Microsoft Security Update' is Trojan `Microsoft Security Update' is Trojan

India Broadband Forum

Register Blogs Members List Social Groups Search Today's Posts Mark Forums Read

                      

Reply

 

LinkBack Thread Tools Display Modes
Old 10-16-08, 04:58 PM   #1
Aadhavan is Coming
 
Rameshjeee's Avatar
 
Join Date: Aug 2008
Location: Leaving Chennai
Age: 26
Posts: 3,075
Rep Power: 10
Rameshjeee is a name known to allRameshjeee is a name known to allRameshjeee is a name known to allRameshjeee is a name known to allRameshjeee is a name known to allRameshjeee is a name known to all
Exclamation `Microsoft Security Update' is Trojan
Hackers are trying to infect innocent computer users with a malicious Trojan horse disguised as a Microsoft security update, in the hours before the software giant issues genuine critical patches as part of its monthly Patch Tuesday cycle, according to security firm Sophos.

The emails, which have the subject line `Security Update for OS Microsoft Windows' claims to have come from Steve Lipner at securityassurance@microsoft.com.

The email tells unsuspecting computer users that the attached file is a high-priority update and needs to be installed by users of various versions of Microsoft Windows.

However, running the attached file infects Windows computer users with the Mal/EncPk-CZ Trojan horse, and could give hackers control over your PC. The file attached to the file is named KBxxxxxx.exe (where ‘xxxxxx’ is a randomly generated number) in order to disguise itself as a knowledgebase file.

Sophos is intercepting the malicious emails spammed out by the hackers, which read as follows:

Quote:
Dear Microsoft Customer,

Please notice that Microsoft company has recently issued a Security Update for OS Microsoft Windows. The update applies to the following OS versions: Microsoft Windows 98, Microsoft Windows 2000, Microsoft Windows Millenium, Microsoft Windows XP, Microsoft Windows Vista.

Please notice, that present update applies to high-priority updates category. In order to help protect your computer against security threats and performance problems, we strongly recommend you to install this update.

Since public distribution of this Update through the official website Microsoft Corporation would have result in efficient creation of a malicious software, we made a decision to issue an experimental private version of an update for all Microsoft Windows OS users.

As your computer is set to receive notifications when new updates are available, you have received this notice.

In order to start the update, please follow the step-by-step instruction:
1. Run the file that you have received along with this message.
2. Carefully follow all the instructions you see on the screen.

If nothing changes after you have run the file, probably in the settings of your OS you have an indication to run all the updates at a background routine. In that case, at this point the upgrade of your OS will be finished.

We apologise for any inconvenience this back order may be causing you.

Thank you,

Steve Lipner
Director of Security Assurance
Microsoft Corp

Awarness is better than Cure.....
Rameshjeee is offline   Reply With Quote
Old 10-16-08, 10:09 PM   #2
Platinum Member
 
StarK's Avatar
 
Join Date: Mar 2008
Location: Nayi Dilli
Posts: 1,392
Rep Power: 4
StarK will become famous soon enoughStarK will become famous soon enough
Send a message via MSN to StarK
Default
lol.. any1 who tries to install updates thru an email deserves to be infected...
StarK is offline   Reply With Quote
Old 10-20-08, 12:55 PM   #3
Junior Member
 
Join Date: Aug 2008
Location: Bangalore
Posts: 90
Rep Power: 2
ensine is on a distinguished road
Default
I use to click on the 'Windows Update' link on 'Control Panel' or in 'IE'.
ensine is offline   Reply With Quote
Reply

Tags
security, trojan, update, `microsoft

« Security Measures when Going Online | Help required in Upgrading Kaspersky »
Thread Tools
Display Modes
Linear Mode Linear Mode

Posting Rules
You may post new threads
You may post replies
You may not post attachments
You may not edit your posts
BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Trackbacks are On
Pingbacks are On
Refbacks are On

Similar Threads

Thread Thread Starter Forum Replies Last Post
Microsoft might get users to update to Internet Explorer 7 through Windows Update India Broadband Software News, Previews and Reviews 0 07-29-06 01:25 AM
Microsoft discontinues Private Folder 1.0 application after security dilemma India Broadband Software News, Previews and Reviews 0 07-18-06 02:33 AM
Level 10 Security Alert: Microsoft Excel Zero-day Vulnerability Admin PR Releases Database 0 06-26-06 03:58 AM
Microsoft working on fixing the MS Excel security glitch Admin Software News, Previews and Reviews 0 06-25-06 06:11 PM
Microsoft might soon rush out an update for Internet Explorer Admin Software News, Previews and Reviews 0 03-26-06 12:55 PM


All times are GMT +5.5. The time now is 03:26 AM.

Contact Us - India Broadband Forum - Archive - Privacy Statement - Top

India Broadband Forum