Yet another bogus Microsoft Security Bulletin

The spammers “attempt to” strike yet again!

This time the claim is “a new 0-day vulnerability which affects machines running MICROSOFT WORD and allows an attacker to take full control of the vulnerable computer if the exploitation process is successful”.

The truth being told, if you downloaded and ran Troj/Kango-D you were guaranteed to allow an attacker into your computer. The spammers have used the same template as the one described in the SophosLabs blog entry Bogus Microsoft Security Bulletin to spread their message to potential victims. This is not a new social engineering trick; we have seen instances of this as early back as 2005.

Posted on November 14th, 2007 by Numaan Huq, SophosLabs Canada
Filed under: Malware

Windows 7 security - A great leap forward or business as usual?

About SophosLabs

SophosLabs protects businesses from known and emerging malware - viruses, rootkits and spyware - and other computer threats like phishing, spam and scams. Learn more about the people who write this blog.

RSS feed

Hot video

International Kill-A-Zombie Day

SophosLabs blog