Sophos warns of new dodgy email

Admins at Microsoft gone wild

By INQUIRER newsdesk

Fri Mar 30 2007, 15:51

SECURITY WATCHDOG Sophos is warning of a new and widespread email based attack that poses as Microsoft offering users to trial a beta version of Explorer 7.

The emails claim to be from "admin@microsoft.com" and have "Internet Explorer 7 Downloads" as the subject line, while the body displays an image which tries to tempt readers into downloading beta 2 of IE7. Of course, once clickified, you'll get dodgy software on your box: ie7.0.exe, which is ridden with the Grum-A worm.

For those not in the know, the Grum worm infects a shedload of exe files referenced by the run keys in the Windows registry. When it runs, it duplicates and sticks itself into winlogon.exe and tinkers with your registry. The HOSTS file is screwed around with too, and tries to patch your ntdll.dll and kernel32.dll system files. Ouchhhh.

Better update, then, just in case you check your mail after one lager too many and think the Vole actually cares about you. µ

Iphone 5 spam wave leads to malware Fake release announcements contain malicious links Tuesday, 4 October 2011, 15:20 PM Read more	A BIOS trojan is found in the wild Hook used for rootkit redundancy Tuesday, 13 September 2011, 14:32 PM Read more
Adobe lists a shedload of bugs in Apple's Mac OS X Lion Wait, what? Already? Friday, 22 July 2011, 11:36 AM Read more	Mega patch day passes for Microsoft and Adobe Acrobat sandboxed, but Flash needs another fix Wednesday, 15 June 2011, 11:52 AM Read more
First impressions of Mageia Linux We take a fork of Mandriva out for a spin Friday, 10 June 2011, 16:00 PM Read more	Virus shows that Mac OS X is not invulnerable Trojan through the back door Monday, 28 February 2011, 11:02 AM Read more

Comments

There are no comments submitted yet. Do you have an interesting opinion? Then be the first to post a comment.

INQ White papers

Databases

Network management

Security

Service oriented architecture

Storage

INQ Jobs

Information currently unavailable

INQ Poll

Authorities in several countries raided Megaupload recently, shut down all of its services, seized hundreds of servers and arrested several of its executives on criminal charges.

Do you think the move was justified?

Yes, companies should suffer an immediate death penalty upon being accused of copyright infringement.

Yes, the coppers said the company was breaking the law so it must be guilty.

No, the company and the people accused are innocent until proven guilty.

No, the company had millions of customers who have been harmed by having access to their data files cut off.

I don't care, I never used Megaupload anyway.

View other polls

© Incisive Media Investments Limited 2012, Published by Incisive Financial Publishing Limited, Haymarket House, 28-29 Haymarket, London SW1Y 4RX, are companies registered in England and Wales with company registration numbers 04252091 & 04252093

SEARCH :

Site Credentials:

Business & Technology websites:

Business research resources:

Products:

Investment Market IT websites:

Find out what you are worth:

Salary Calculator

Search for a job:

Recruitment Agency A-Z Directory

Accreditations:

Digital Publisher of the Year 2010

Sophos warns of new dodgy email

Share this:

RIM Playbook OS 2.0 and Blackberry 7.1 video demo

Nokia Lumia 710 video review

Databases

Network management

Security

Service oriented architecture

Storage