Fake Windows Security Update E-mail Spreading Malware

Fake Windows Security Update E-mail Spreading Malware



Security experts are warning users about fake emails pretending to be critical Microsoft Windows security updates. These emails claim to be from Steve Lipner, Microsoft’s chief security officer, and urge recipients to download a .zip file attached to the email. However, the file actually contains malware known as W32/Autorun-BMF, which can infect users’ systems. Despite the convincing appearance of these emails, Microsoft does not distribute security updates via email attachments.

The emails in question come from the untrustworthy address “no-reply@microsft.com,” which is a common tactic used by scammers to trick recipients into believing the communication is legitimate. Graham Cluley, a senior technology consultant at Sophos, emphasized the importance of not opening suspicious links, even if they seem to be from reputable sources.

It is essential for users to be cautious and verify the legitimacy of emails before downloading any attachments or clicking on links. Being vigilant and staying informed about common online threats can help protect against falling victim to malware attacks. Always be cautious and verify the authenticity of any unexpected emails before taking any action.

Article Source
https://www.nbcnews.com/news/amp/wbna40913465