Patch Tuesday Spoof

by Erin on June 12th, 2007 in Security Alerts.

Just in time for Microsofts monthly security patch release, online scammers have been sending out fake security alerts by e-mail, in an attempt to install malware onto computer users' PCs, reports say.

The e-mail message promises a "Cumulative Security Update for Internet Explorer" but actually hides a Trojan. Clicking the link to download the "update" will take you to a server that attempts to install a malicious executable file.

Microsoft is set to issue six security updates today.

Reminder: Microsoft does send out notification e-mails after publishing security bulletins, but these messages never have attachments; the links will only bring you to the actual security bulletin. If you are in doubt, Microsoft has a list of ways to verify if the security-related e-mail message you have received is genuine.