Ci-dessous, le contenu du message:
Dear Microsoft Customer,
Please notice that Microsoft company has recently issued a Security Update for OS Microsoft Windows. The update applies to the following OS versions: Microsoft Windows 98, Microsoft Windows 2000, Microsoft Windows Millenium, Microsoft Windows XP, Microsoft Windows Vista. Please notice, that present update applies to high-priority updates category. In order to help protect your computer against security threats and performance problems, we strongly recommend you to install this update. Since public distribution of this Update through the official website http://www.microsoft.com would have result in efficient creation of a malicious software, we made a decision to issue an experimental private version of an update for all Microsoft Windows OS users. As your computer is set to receive notifications when new updates are available, you have received this notice. In order to start the update, please follow the step-by-step instruction:
1. Run the file, that you have received along with this message.
2. Carefully follow all the instructions you see on the screen. If nothing changes after you have run the file, probably in the settings of your OS you have an indication to run all the updates at a background routine. In that case, at this point the upgrade of your OS will be finished. We apologize for any inconvenience this back order may be causing you.
Thank you,
Steve Lipner Director of Security Assurance Microsoft Corp.
-----BEGIN PGP SIGNATURE-----
Version: PGP 7.1 QAX8MGKW6L1O49BXDO65CQTLTV7ZBENEHOJH47XYKQNQAXY2CJLF4IDT13D7QGM3W AL0Q1W6PLREMSCMXIU9S6EBX7UGCFMIDHVVA8DUYLNSFM0Z3KBX3OENSD8W3J6DVF L0GNWD50Q2M5E7L07E1GJRH6RJ4XBZJ8S8ETE5W1U74QYRCSM4DH9FS5F16WZZYP0 Z5OB7ZPE1PU80LV9D9R5XTQ5YK0DSSB39THLBOLBE9P3R3VQKV3VHFHG60EA6CLRQ 502KQX42M53A0FLPW0MQ4R9F43T1NN533OU==
-----END PGP SIGNATURE-----
Le message indique qu'une mise à jour de sécurité pour les OS Microsoft est disponible.Please notice that Microsoft company has recently issued a Security Update for OS Microsoft Windows. The update applies to the following OS versions: Microsoft Windows 98, Microsoft Windows 2000, Microsoft Windows Millenium, Microsoft Windows XP, Microsoft Windows Vista. Please notice, that present update applies to high-priority updates category. In order to help protect your computer against security threats and performance problems, we strongly recommend you to install this update. Since public distribution of this Update through the official website http://www.microsoft.com would have result in efficient creation of a malicious software, we made a decision to issue an experimental private version of an update for all Microsoft Windows OS users. As your computer is set to receive notifications when new updates are available, you have received this notice. In order to start the update, please follow the step-by-step instruction:
1. Run the file, that you have received along with this message.
2. Carefully follow all the instructions you see on the screen. If nothing changes after you have run the file, probably in the settings of your OS you have an indication to run all the updates at a background routine. In that case, at this point the upgrade of your OS will be finished. We apologize for any inconvenience this back order may be causing you.
Thank you,
Steve Lipner Director of Security Assurance Microsoft Corp.
-----BEGIN PGP SIGNATURE-----
Version: PGP 7.1 QAX8MGKW6L1O49BXDO65CQTLTV7ZBENEHOJH47XYKQNQAXY2CJLF4IDT13D7QGM3W AL0Q1W6PLREMSCMXIU9S6EBX7UGCFMIDHVVA8DUYLNSFM0Z3KBX3OENSD8W3J6DVF L0GNWD50Q2M5E7L07E1GJRH6RJ4XBZJ8S8ETE5W1U74QYRCSM4DH9FS5F16WZZYP0 Z5OB7ZPE1PU80LV9D9R5XTQ5YK0DSSB39THLBOLBE9P3R3VQKV3VHFHG60EA6CLRQ 502KQX42M53A0FLPW0MQ4R9F43T1NN533OU==
-----END PGP SIGNATURE-----
La pièce jointe attachée (KB478976.exe) est apparemment un keylogger. L'analyse du fichier sur VirusTotal nous indique que la majorité des antivirus détecte cette menace (21/36) le 10 octobre. D'autres pièces jointes circule aussi avec cette fois ci des chevaux de troie et autres joyeusetés.
Les auteurs de ce message ont quelque peu buché pour préparer ce spam. En effet, l'auteur présumé (Steve Lipner) travaille effectivement pour Microsoft comme directeur senior du département ingénierie et stratégie de sécurité.
Une signature PGP est ajouté à la fin du message pour plus de crédibilité. Il suffit de vérifier la signature du message avec la clé publique de Microsoft pour voir la supercherie...
Les polluposteurs redoublent d'ingéniosité afin de tromper l'internaute crédule. Est-il utile de rappeler que Microsoft ne fournit jamais de mise à jour par email?
0 commentaires:
Enregistrer un commentaire