Abingdon/Gorinchem, June 28, 2007 - IT security and control firm Sophos is warning users of a widespread attempt to infect email recipients by sending a warning about a bogus Microsoft security patch.
The emails, which have the subject line "Microsoft Security Bulletin MS07-0065" pretend to come from Microsoft, and claim that a zero-day vulnerability has been discovered in the Microsoft Outlook email program. They go on to warn recipients that "more than 100,000 machines" have been exploited via the vulnerability, in order to promote medications such as Viagra and Cialis.
The phoney email encourages users to download a patch, claiming that it will fix the problem and prevent them from being attacked by hackers. However, clicking on the link contained inside the email does not take computer users to Microsoft's website, but instead to one of many compromised websites hosting a Trojan horse.
"Security bulletins from Microsoft describing vulnerabilities in their software are a common occurrence, and so it comes as no surprise to see hackers adopting this kind of disguise in their attempt to infect Windows PCs," said Graham Cluley, senior technology consultant for Sophos. "The irony is that as awareness of computer security issues and the need for patching against vulnerabilities have risen, so social engineering tricks which pose as critical software fixes are likely to succeed in conning the public."
In examples seen by Sophos experts, the emails have correctly displayed the recipient's full name, and the company they work for, in an attempt to lure users in.
"By using people's real names, the Microsoft logo, and legitimate-sounding wording, the hackers are attempting to fool more people into stepping blindly into their bear-trap," continued Cluley. "Users need to be on their guard against this kind of confidence trick or they risk handing over control of their PC to hackers with criminal intentions. They should also ensure that they are downloading Microsoft security updates from Microsoft itself and not from any other website."
Sophos recommends companies protect themselves with a consolidated solution that includes proactive detection, which can defend against the threats of viruses, spyware, spam and hackers.
More information and a graphic can be found at:
www.sophos.com/pressoffice/news/articles/2007/06/bogusmspatch.html About Sophos:
Sophos is a world leader in IT security and control. Sophos offers complete protection and control to business, education and government organizations - defending against known and unknown malware, spyware, intrusions, unwanted applications, spam, policy abuse and uncontrolled network access (NAC). Sophos's reliably engineered, easy-to-operate products protect more than 100 million users in more than 150 countries. Through over 20 years' experience and a global network of threat analysis centers, the company responds rapidly to emerging threats and achieves the highest levels of customer satisfaction in the industry. Sophos is a global company with headquarters in Boston, MA, and Oxford, UK. For more information on Sophos, visit
www.sophos.com About Sophos Benelux
Sophos Benelux is providing Sophos solutions and services to its partners, resellers and customers in the Benelux region. Sophos is a world leader in IT security and control. Our global threat analysis centers protect over 100 million users in more than 150 countries from malware, spyware, intrusions, unwanted applications, spam and policy abuse, and provide comprehensive network access control (NAC). Our rapid response to emerging threats gives us unrivalled levels of customer satisfaction. For more information
www.sophosbenelux.com For more information or for interview requests, please contact:
Sophos Benelux
Marnix van Meer
Tel: +31 655700255
m.vanmeer(at)sophosbenelux.com
Creative Strategies
Elke De Ridder
Tel: +32 2 267 41 60
ederidder(at)creative-strategies.eu.com