The content of emails sent in this campaign is to encourage users to install Microsoft security update MS05-039 along with a link that instructs users to access another site to download ' patch '.
In fact, if users access that link and download the patch, they have downloaded and installed a trojan specializing in stealing passwords and user information.
Trojans appear to resolve the Windows patch Picture 1 Joel Camissar - a Websense expert - confirmed that the fraud campaign has certainly won some success as it relies on users' concerns and concerns on some of the security issues on the system. they.
' Users are still very easy to be victims of scams like this.The hackers are very easy to exploit the fear of users to create new waves of fraud , 'Camissar said.
Users are more likely to become victims of scams like the ones above because they want to secure the system. However, users rarely find the source of information on the software vendor's official website, do not check the source of the email sent.
This phishing campaign marks a new step in phishing tactics. Online scammers are now beginning to exploit user interest in security. This is also considered a fraud attack technique 'social engineer'.