Today I received a mail, supposedly from Microsoft, regarding a “security vulnerability”:
Click on the image to zoom
Now, there are a few things that are revealed upon closer examination:
The “from” address is suspicious: Network Security Center [firstname.lastname@example.org]. (Hmmm…)
It addresses you as “MS” customer. It also uses terms like “MS Internet Explorer” and “MS Outlook”. Microsoft officially doesnt use “MS” to address itself :). (Hmmm Hmmm…)
Microsoft NEVER (never never ever) sends an update out to its customers as an email attachment.
Microsoft update files normally have a filename that start with the letters “KB” followed by the KB article number.
What a clever way to outwit the unsuspecting user! So those of you out there, beware of stuff that comes in your e-mail! Think twice before you run an EXE attachment.
From my experience, 9 out of 10 EXE attachments are viruses. Sometimes they appear to come from people you know, because they are actually sent by malicious programs that have already infected their machines.