Checking 9/19/03 validity of email re security patch

  • Thread starter Thread starter Ann O'Sullivan
  • Start date Start date
A

Ann O'Sullivan

This morning I received three emails from MSCorporation
asking me to install a security patch. The emails were
from: (e-mail address removed), "Net Critical
Pack", (e-mail address removed), "Newest Microsoft
Critical Pack", and yfhzkj-
(e-mail address removed), "last net patch"

Please advise if this is a valid communication from your
company and if it is safe to install the attachment to
these emails.
Thank you.

Ann O'Sullivan
(e-mail address removed)
 
A devious imposter is "spoofing" Microsoft and attempting to deceive you
into installing a malicious VIRUS in your computer! Delete the VIRUS
laden message immediately!

Microsoft never sends file attachments with email messages!

Please take a moment to read the following articles:

Information on Bogus Microsoft Security Bulletin E-mails
http://www.microsoft.com/technet/treeview/default.asp?url=/technet/security/news/patch_hoax.asp

How to Tell If a Microsoft Security-Related Message Is Genuine
http://www.microsoft.com/security/antivirus/authenticate_mail.asp


--
Nicholas

--------------------------------------------------------------------------------


| This morning I received three emails from MSCorporation
| asking me to install a security patch. The emails were
| from: (e-mail address removed), "Net Critical
| Pack", (e-mail address removed), "Newest Microsoft
| Critical Pack", and yfhzkj-
| (e-mail address removed), "last net patch"
|
| Please advise if this is a valid communication from your
| company and if it is safe to install the attachment to
| these emails.
| Thank you.
|
| Ann O'Sullivan
| (e-mail address removed)
 
Microsoft never sends unsolicited files by email.
DO NOT open the file--it is NOT from MS.
REPEAT:Microsoft NEVER sends unsolicited files by email.

It is a virus masquerading as MS security.
The most recent is W32/Swen@MM which can be removed with Stinger
http://vil.nai.com/vil/stinger/

The others circulating are dumaru.b
http://securityresponse.symantec.com/avcenter/venc/data/[email protected]
or a variant of the gibe worm.
Removal tool for gibe is at
http://securityresponse.symantec.com/avcenter/venc/data/[email protected]


--
Larry Samuels MS-MVP (Windows-Shell/User)
Associate Expert
Unofficial FAQ for Windows Server 2003 at
http://home.earthlink.net/~larrysamuels/WS2003FAQ.htm
Expert Zone -
 
Back
Top