Re: SECURITY PATCH SENT BY EMAIL ?

anonymous_at_discussions.microsoft.com
Date: 10/15/03 

Date: Wed, 15 Oct 2003 14:35:16 -0700

Thanks for the quick response, N.Miller
I figured it wasn't legit when virus wasn't spelled in
the plural sense, lol...
I have notified several friends to be on the lookout and
will keep an eye out in case more come in....geez, I wish
some people would get a life....
thanks again :)
>-----Original Message-----
>In article <059501c3935b$b26d9960$a401280a@phx.gbl>,
>anonymous@discussions.microsoft.com says...
>> I have just recv"d an email from
security@microsoft.com
>> which states "Dear friend , use this Internet Explorer
>> patch now! There are dangerous virus in the Internet
now!
>> More than 500.000 already infected!"
>> There is an attachment called patch.exe
>> Is this legitimate?
>
>*** DO NOT INSTALL THE PATCH! IT IS A VIRUS! ***
>
>You just received your first one? Lucky you. I got my
first one way back in
>March. But, since Sept. 18, 2003, people have been
receiving them by the
>thousands.
>
>No, it is not legitimate. Somewhere in these groups Mr.
Phil Shelden has
>post an article with a decent explanation on what is
going on. Mainly, don't
>try to install the patch. It is most probably the
W32.Swen.A@mm virus,
>though there are other viral attachments in the phoney
MS patch messages. I
>haven't seen the W32.Dumaru@mm patch, though it is the
most common after
>Swen. I have seen the W32.Gibe@mm, or its later
variants, in the older fake
>MS patch email messages.
>
>Microsoft never sends patches in unsolicited mails, nor
do they post patches
>in news groups. You will only get a notification from
Microsoft if you have
>subscribed to receive their Security Bulletin; and even
then they do not
>send patches. They tell you where to go on the Microsoft
site to download
>the patch.
>
>If you are not subscribed to anything from Microsoft,
anything you get
>purporting to be from Microsoft should be treated with
suspicion. Delete the
>messages.
>
>Oh, and if you got one, you *may* get hundreds more to
follow. It depends
>upon where your email address was exposed. I've gotten
three, or four, in
>one Hotmail account. I get about one a week in another
Hotmail account. But
>I get so many in a third that it goes over quota in half
a day. I received
>seven in three hours to a Sneakemail address that
normally got one
>legitimate email message a month; it has been deleted
(Sneakemail is a
>forwarding service that lets you create as many
disposable addresses as you
>need). And, I get a few score, maybe even a hundred, or
more, connections
>attempting to deliver these fake messages to a local
domain account alias
>for which I control the server. The alias no longer
works, and the delivery
>attempts are rejected with a non-delivery error code.
>
>
>--
>Norman
>~Win dain a lotica, En vai tu ri, Si lo ta
>~Fin dein a loluca, En dragu a sei lain
>~Vi fa-ru les shutai am, En riga-lint
>.
>