What is it?: A fake email about a Microsoft patch
What does it do?: This fake email, typically with the subject “Microsoft Security Bulletin MS07-0065 – Critical Update”, invites readers to go to a website which installs a virus.
How do I fix it?: Be very cautious about clicking on attachments and links in email. If in doubt, don’t. Microsoft has published advice on how to validate security-related emails from them here:
www.microsoft.com/protect/yourself/phishing/msemail.mspx
Details of Specific Problem: The problem is described in more detail on SANS:
isc.sans.org/diary.html?storyid=3054
