Beware the Fake Microsoft Windows Update Patch W32.Pinfi! 5/20/2005 - 1,852 views, 6 Comments
|
Previous Article « Paris Hilton’s Sidekick’s Teenaged Hacker Talks
Read Next Article » Pet a Chicken Across the Internet! But Wait, There’s More!
Surely as night follows day, fake Microsoft updates now follow Microsoft’s genuine monthly security updates. The real Microsoft updates come out on the second Tuesday of each month. By the second Wednesday of each month, there are fake patches being spammed around, each of which is, of course, really a virus. This month’s fake Microsoft patch is a memory-resident virus called w32.pinfi, which, once leashed, can travel across networks and to attached hard drives. W32.pinfi, also known as the Pate or Parite virus, is being borne in email which advises the user that the attached “patch” closes security holes in IE, Outlook, and Outlook Express, and is targetted at Windows 95, Windows 98, Windows NT, Windows 2000, Windows XP, and Windows ME systems. An advisory on the Microsoft site cautions users that “Microsoft sends e-mail to subscribers of our security e-mail notification services when we release information about a security software update or security incident. Explained a representative for Microsoft, “This is a common scam. It’s important to remind customers that Microsoft will never attach software updates to security e-mail notifications,” and adding that “users should always exercise extreme caution when opening unsolicited attachments from both known and unknown sources.
Unfortunately, malicious individuals have been known to send fake e-mail notifications that appear to be coming from Microsoft, a tactic known as spoofing. Some of these messages lure recipients to Web sites to download malicious code, while others include a file attachment containing a virus,” and then explains that “We never attach software updates to our security e-mail notifications” and “We never send notices about security updates or incidents until after we publish information about them on our Web site. If you are ever in doubt about the authenticity of a Microsoft security e-mail notification, check the Security site on Microsoft.com”
|
|
Email the link for this page to a friend! |
Read more:
» Don’t Say That Aunty Didn’t Warn You - This Month’s Fake Microsoft Security Update MS05-039
» Microsoft WMF Patch for Windows Metafile (WMF) Issue Released Early - Get It Now!
» Windows ActiveX Flaw Still Active After Patch
» Screwed If You Do, Screwed If You Don’t - Windows Update Causes Crashes (KB891711)
For additional similar stories check out our archives on Virus & AntiVirus, Windows
Wouldn’t it be better to just turn off automatic updates? As soon as I hit “say it!” that’s what I’m gonna do.
Thanks for alerting us.
Tim
Comment by Timothy Heflin — 5/21/2005 @ 4:42 am
What good or effect will that have….this article indicates the virus is sent in an email attachment?
Comment by Sampson — 5/22/2005 @ 4:34 am
Apparently millions will continue to be suckered into these false patches by the fake emails. Sotware and computers are a great gift but humanity has screwed up every opportunity since the garden of eden!
Comment by Celtman — 5/27/2005 @ 1:35 am
I just mentioned one of your articles in my newsletter.
Thanks Aunty, you’re the best …
Clif
http://clifnotes.mybesthost.com/
Dedicated to promoting freeware and free information
Comment by Clif Notes — 6/12/2005 @ 12:32 am
req.for os windows 2000srv.
w32pinfi virus removel tool
Comment by sanjay — 8/10/2006 @ 2:45 am
to resolve all these problems just buy a mac cause pcs suck
Comment by mike ditka — 3/18/2007 @ 6:13 am