Like day follows night, a bogus "cumulative update" with a malicious attachment has followed Microsoft's patch day.
ADVERTISEMENT In what has become a monthly staple, virus writers are taking advantage of the heightened public interest around Microsoft's patching cycle to trick users into executing a malicious attachment.
The latest social engineering trick arrives via e-mail with an attachment that purports to be a "cumulative patch" for May 2005.
The claim is that the executable file contains patches for vulnerabilities in Internet Explorer, Microsoft Outlook and Outlook Express, three widely used products with a history of serious security bugs.
The file is actually an executable for a variant of W32.Pinfi, a memory-resident polymorphic virus capable of replicated via mapped drives and network shares.
The Pinfi virus, also known as Pate or Parite, has been programmed to infect every PE and SCR file on every drive and network share.
It targets users of Windows 95, Windows 98, Windows NT, Windows 2000, Windows XP, Windows Me.
Complete story here
ADVERTISEMENT In what has become a monthly staple, virus writers are taking advantage of the heightened public interest around Microsoft's patching cycle to trick users into executing a malicious attachment.
The latest social engineering trick arrives via e-mail with an attachment that purports to be a "cumulative patch" for May 2005.
The claim is that the executable file contains patches for vulnerabilities in Internet Explorer, Microsoft Outlook and Outlook Express, three widely used products with a history of serious security bugs.
The file is actually an executable for a variant of W32.Pinfi, a memory-resident polymorphic virus capable of replicated via mapped drives and network shares.
The Pinfi virus, also known as Pate or Parite, has been programmed to infect every PE and SCR file on every drive and network share.
It targets users of Windows 95, Windows 98, Windows NT, Windows 2000, Windows XP, Windows Me.
Complete story here
