Deep computer turned into Microsoft

Security firm Sophos has warned users of e-mail about a new computer virus that spreads quickly with a sophisticated distribution. It is disguised as an email to the user inbox with the content of the notification

Security firm Sophos has warned users of e-mail about a new computer virus that spreads quickly with a sophisticated distribution. It is disguised as an email to the user mailbox with the notice of providing a copy of Internet Explorer 7 from Microsoft for download.

According to an expert of the company, those emails contain the sender address from admin@microsoft.com and the "Internet Explorer 7 Downloads" subject line, in which the content displays a photo inviting people. Use the beta 2 download of Internet Explorer 7. If the user is mistakenly mistakenly mistaken, the message's path will immediately pave the way for the W32 / Grum-A worm to attack the infected computer.

Deep computer turned into Microsoft Picture 1Deep computer turned into Microsoft Picture 1 " This computer worm seems to be the only success because many people have no doubts about email being voluntary, especially when it claims to be from a reputable company. Not only that, it also made the world surprised by the use of graphics like Microsoft used to promote Internet Explorer 7.0 on their website, click on it, instead of downloading that beta, the code According to the scenario of hackers breaking into the software system , "said outsourcing expert Graham Cluley, Sophos.

Grum is a series of worms that can manually attach to executable files such as the Windows Registry. Once activated, it finds itself and copies a piece of code into winlogon.exe and creates a Registry change. It also modifies HOSTS files, adds some lines to system.dll and tries to stick to other system files.

Advisor Cluley emphasized that this is a long-standing trick by hackers impersonating Microsoft messages. For the first time in 2003, the Gibe-F worm, also known as Swen, disguised Microsoft's emergency fix, and in 2005 hackers controlled computer users to access a fake website. This type of upgraded service provider.

Vu Anh Tu

4 ★ | 1 Vote