Attention aux faux mails : Microsoft ne diffuse pas de mise à jour de sécurité par mail

Un message intitulé Security Update for OS Microsoft Windows et signé par Steve Lipner, qui est un véritable employé de Microsoft chargé des patch de sécurité, circule en ce moment.

Dear Microsoft Customer,

Please notice that Microsoft company has recently issued a Security Update for OS Microsoft Windows. The update applies to the following OS versions: Microsoft Windows 98, Microsoft Windows 2000, Microsoft Windows Millenium, Microsoft Windows XP, Microsoft Windows Vista.

Please notice, that present update applies to high-priority updates category. In order to help protect your computer against security threats and performance problems, we strongly recommend you to install this update.

Since public distribution of this Update through the official website http://www.microsoft.com would have result in efficient creation of a malicious software, we made a decision to issue an experimental private version of an update for all Microsoft Windows OS users.

As your computer is set to receive notifications when new updates are available, you have received this notice.

In order to start the update, please follow the step-by-step instruction:

1. Run the file, that you have received along with this message.

2. Carefully follow all the instructions you see on the screen.

If nothing changes after you have run the file, probably in the settings of your OS you have an indication to run all the updates at a background routine. In that case, at this point the upgrade of your OS will be finished.

We apologize for any inconvenience this back order may be causing you.

Thank you,

Steve Lipner

Director of Security Assurance

Microsoft Corp.

Ce mail est accompagné d’une pièce jointe :

Cette pièce jointe contient une backdoor (Win32/Haxdoor), pour résumer un logiciel qui permet ensuite d’accéder aux données de votre PC depuis Internet.

Microsoft précise que ce backdoor peut aussi endommager les données voire effacer les mémoires CMOS de votre PC (source : http://www.microsoft.com/security/portal/Entry.aspx?name=Win32%2fHaxdoor)

 

Juste une chose à retenir :

Microsoft ne diffuse jamais de correctif de sécurité ou mise à jour par mail !!!

Ce qui est rassurant, c’est que Outlook ou Outlook Express ne permettent pas, par défaut, d’ouvrir les programmes.

Vous êtes désormais prévenus…

 

Laurent Gébeau

Leave a Reply

Your email address will not be published. Required fields are marked *

You may use these HTML tags and attributes: <a href="" title=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <cite> <code> <del datetime=""> <em> <i> <q cite=""> <strike> <strong>