It looks like there’s a nasty email going around the net, with the purpose of telling people there is a new Microsoft Patch available. But there isn’t a new one…. The spammers are using the fact that MS Windows has got a lot of vulnerabilities in the past to tell people that another one is found and a patch is available. When people click the link in the email it does NOT bring them to the proposed url (http://www.microsoft.com/patches-win-logon-critical/winlogon_patchV1.12.exe) but it brings them to a redcallao.com subdir, which has a bogus winlogon_patchV1.12.exe-file. Only a few virusscanners are detecting this thing now (ISC reports only 8 of them) so you be warned!

This entry was posted on Tuesday, May 30th, 2006 at 18:09 and is filed under Vulnerables, Windows. You can follow any responses to this entry through the RSS 2.0 feed. You can leave a response, or trackback from your own site.