[Donna]

Sophos reported "Fake Microsoft Security Alert - KB910721" (spam) last week. It's still in the wild trying to trick recipients of the email to click the malicious links and to download a malicious update for Outlook Express and Outlook email programs:







When opening the fake Microsoft URL, Opera browser is able to prevent the page in loading and continue to flag it as "Fraud" site when I proceed to load the page:



Firefox and IE8 browsers with malware or fraud detections failed to block the fake page (reported now!)



The fake Microsoft alert will automatically open PDF reader:



18 out of 41 malware scanner will detect the malicious file:


http://www.virustotal.com/analisis/988e317...a2e8-1245699634

If you are using Hosts file, OpenDNS, Blocklist, you should block the bad domains: 11hilf.com and illihil.com

Attached thumbnail(s)

• 

[dgsjsj]

Donna Hi.
Thanks for the information we have recently discussed a very similar news.
http://www.ikarus-so...com/content.htm
http://news.drweb.co...&c=5&p=0&lng=en
Send link to your message IKARUS Security Software GmbH
They do not show on the detector
http://www.virustotal.com/analisis/988e317...a2e8-1245699634

This post has been edited by dgsjsj: 23 June 2009 - 10:33 AM