Thursday, October 16, 2008

Security Update For Microsoft Windows

roubA few of my customers got this email from 'Microsoft', and asked me whether they need to install that update.

--------------------------------------------------------------------------------------------------
Dear Microsoft Customer,

Please notice that Microsoft company has recently issued a Security Update for OS Microsoft Windows. The update applies to the following OS versions: Microsoft Windows 98, Microsoft Windows 2000, Microsoft Windows Millenium, Microsoft Windows XP, Microsoft Windows Vista.

Please notice, that present update applies to high-priority updates category. In order to help protect your computer against security threats and performance problems, we strongly recommend you to install this update.

Since public distribution of this Update through the official website http://www.microsoft.com would have result in efficient creation of a malicious software, we made a decision to issue an experimental private version of an update for all Microsoft Windows OS users.

As your computer is set to receive notifications when new updates are available, you have received this notice.

In order to start the update, please follow the step-by-step instruction:
1. Run the file, that you have received along with this message.
2. Carefully follow all the instructions you see on the screen.

If nothing changes after you have run the file, probably in the settings of your OS you have an indication to run all the updates at a background routine. In that case, at this point the upgrade of your OS will be finished.

We apologize for any inconvenience this back order may be causing you.

Thank you,

Steve Lipner
Director of Security Assurance
Microsoft Corp.

--------------------------------------------------------------------------------------------------

Well normal computer user would think that they should perform the updates. Why not? It was sent by Microsoft, the email looks convincing, and it was signed by our own Steve Lipner! So hey, lets download the attachment, run the KB294576.exe (random KB number) file and congratulations, you just installed a malware in your computer that will allow attackers to execute files and steal information from your computer.

Click Read More to find out why that email is obviously fake.


Reason number 1:
Microsoft will never put an executable file as an attachment to any security notification emails sent to customers.

Reason number 2:
To perform Windows Update, you just need to go to the update page. It should be done automatically anyway. To do it manually, Start > Windows Update. Tak jumpa? Bukak Internet Explorer > Tools > Windows Update. Tapi korang suma pakai Windows cetak rompak mana ada nak buat update ye tak.

Reason number 3:
Your antivirus should pick that email saying that it could not identify the sender or the obvious warnings that it has detected a trojan horse attached to the email?? Duhh.

Jika ada sebarang soalan, jangan malu untuk bertanya. Jika sudah terkena, aku mungkin gelakkan korang dulu. For more information, you can visit this link http://blogs.technet.com/msrc/archive/2008/10/13/microsoft-security-e-mail-spoofs-with-malware.aspx

Yang benar,
Mohamad Faizal Rosly
v-26mros(at)mssupport(dot)microsoft(dot)com
Microsoft Technical Support
Support Hours - Mon to Fri 8:00am - 8:00pm (AEST)
Support Line - 13 20 58 (AU and NZ)
Web: http://support.microsoft.com



6 comments:

Anonymous said...

gile ah IT expert kite

Anonymous said...

adam

hUdArLiNg said...

owhh..thnx 4 da info!

Anonymous said...

bagus jai..sekurang-kurangnye kau tak makan gaji bute..haha

-shuhud-

Mohamad Faizal said...

saya bekerja dengan ikhlas tanpa mengharapkan balasan

Anonymous said...

Keep posting stuff like this i really like it

Post a Comment

Related Posts Plugin for WordPress, Blogger...