Original URL: http://www.channelregister.co.uk/2007/06/28/outlook_bug_isnot/
Do not be tempted into opening an email with the subject line: "Microsoft Security Bulletin MS07-0065" because it is no such thing.
The email is not from Microsoft and contains a link to a webpage containing a trojan (disguised malware). The emails contain real people's names and the company they work for and looks like a genuine Microsoft email.
The mail looks pretty convincing and includes Microsoft and Windows logos. It claims that a zero-day vulnerability has been found that would allow hackers to get into machines running Outlook. The mail claims 100,000 machines have already fallen foul of the vulnerability.
There's more from Sophos here. (http://sophos.com/pressoffice/news/articles/2007/06/bogusmspatch.html)
Graham Cluely, senior tech consultant for Sophos, said the attempted attack actually showed there was increased awareness of computer security because hackers are now using social engineering to take advantage of this improved understanding.
He said: "The irony is that as awareness of computer security issues has risen, and the need for patching against vulnerabilities, so social engineering tricks that pose as critical software fixes are likely to succeed in conning the public."®
Windows Genuine Advantage cries wolf (again) (27 August 2007)
http://www.channelregister.co.uk/2007/08/27/wga_server_outage_aug_2007/
Three critical flaws mark July Patch Tuesday (11 July 2007)
http://www.channelregister.co.uk/2007/07/11/ms_patch_tuesday/
Of Microsoft Forefront security (2 July 2007)
http://www.channelregister.co.uk/2007/07/02/microsoft_forefront_security/
The decline of antivirus and the rise of whitelisting (27 June 2007)
http://www.channelregister.co.uk/2007/06/27/whitelisting_v_antivirus/
Symantec showers free software on bug-afflicted Chinese (25 June 2007)
http://www.channelregister.co.uk/2007/06/25/symantec_compensation/
Spanish police arrest moby virus writer (25 June 2007)
http://www.channelregister.co.uk/2007/06/25/spain_mobile_virus_arrest/
About those 844 security breaches... 'fess up, Congress tells DHS (21 June 2007)
http://www.channelregister.co.uk/2007/06/21/congress_questions_dhs_cyber_security/
Phishermen, not zombies, causing biggest security woes (20 June 2007)
http://www.channelregister.co.uk/2007/06/20/mcafee_security_trends/
Malware targets computer forensics tool (18 June 2007)
http://www.channelregister.co.uk/2007/06/18/winhex_virus/
DIY kits dumb down phishing (8 June 2007)
http://www.channelregister.co.uk/2007/06/08/phishing_kit_survey_ibm/
© Copyright 2008