petersaville.net

The worlds major PC virus experts are warning of a spammed email campaign which claims to be security advice from Microsoft, but actually tries to encourage users to install a keylogger onto their computers. The spammed emails, which purport to come from patch@microsoft.com, claim that a vulnerability has been found 'in the Microsoft WinLogon Service' and could 'allow a hacker to gain access to an unpatched computer'. Recipients are advised to click on a link in the email to download the patch. However, the link really points to a non-Microsoft website and initiates the download of the BeastPWS-C Trojan horse, which is capable of spying on the infected user and stealing passwords. When first installed the Trojan horse displays a bogus message, which reads: 'Microsoft WinLogon Service successfully patched'. In actual fact, the malware is secretly logging keystrokes and sending them to an email address belonging to the hacker. Find our more from http://www.net-security.org/secworld.php?id=4009

EDITORS NOTE: MICROSOFT WILL NEVER SEND YOU AN EMAIL OF THIS NATURE ALL UPDATES TO SECURITY FLAWS ARE DONE BY http://update.microsoft.com