Sophos warns of new dodgy email

Admins at Microsoft gone wild

By INQUIRER newsdesk

Friday, 30 March 2007, 15:51

SECURITY WATCHDOG Sophos is warning of a new and widespread email based attack that poses as Microsoft offering users to trial a beta version of Explorer 7.

The emails claim to be from "admin@microsoft.com" and have "Internet Explorer 7 Downloads" as the subject line, while the body displays an image which tries to tempt readers into downloading beta 2 of IE7. Of course, once clickified, you'll get dodgy software on your box: ie7.0.exe, which is ridden with the Grum-A worm.

For those not in the know, the Grum worm infects a shedload of exe files referenced by the run keys in the Windows registry. When it runs, it duplicates and sticks itself into winlogon.exe and tinkers with your registry. The HOSTS file is screwed around with too, and tries to patch your ntdll.dll and kernel32.dll system files. Ouchhhh.

Better update, then, just in case you check your mail after one lager too many and think the Vole actually cares about you. µ

Trigger happy TV Living with the Sanyo Xacti HD1 Tuesday, 6 January 2009, 22:59 PM Read more	Turn off Javascript in IE again You probably were not expecting this Tuesday, 24 November 2009, 10:21 AM Read more
Intel caught with dodgy GPU drivers Benchmarketing Tuesday, 13 October 2009, 13:59 PM Read more	Microsoft blames malware on illegally copied software But it's not true Tuesday, 3 November 2009, 13:00 PM Read more
Chrome supports Hotmail Pretends to be an Apple Friday, 30 January 2009, 11:57 AM Read more	PR spinner insists Vista kernel is secure Comment Only Device I/O Control is buggy Thursday, 4 December 2008, 13:24 PM Read more

Comments

There are no comments submitted yet. Do you have an interesting opinion? Then be the first to post a comment.

Most read
Most commented
Most popular

INQ Whitepapers

Will you be buying a new computer this Christmas?

Yes, a new computer will be under the tree

Yes, a netbook will fit my stocking nicely

No, but will be upgrading some components / building my own

No, my computer works fine if I change the oil often enough

Bah humbug, I'll wait for the January sales to decide

View other polls

©Incisive Media Limited, Haymarket House, 28-29 Haymarket, London SW1Y 4RX, is a company registered in the United Kingdom with company registration number 04038503

SEARCH :

Site Credentials:

Business & Technology websites:

Business research resources:

Products:

Investment Market IT websites:

Find out what you are worth:

Search for a job:

Recruitment Agency A-Z Directory: All
A B C D E F G H I J K L M N O P Q R S T U V W X Y Z

Sophos warns of new dodgy email

Share this:

Business Intelligence Software

Customer Relationship Management (CRM)

Enterprise Accounting Software

Enterprise Resource Planning (ERP)

Enterprise Systems Management

Java Developer, Solution D

Java Programmer:- JAVA, J2E...

Read more

Technical Courier - Milton

Technical courier required ...

Read more

XML Content Developer

My client, a large blue-chi...

Read more

Web Designer Flash, Photos

Web Designer Flash, Photosh...

Read more

Enterprise Architect

Enterprise Architect requir...

Read more