Microsoft Statement Regarding Download.Ject Malicious Code Security Issue
Microsoft is committed to helping customers keep their information safe. We are currently working with law enforcement and industry partners to identify the individuals or entities responsible for a new Internet attack, known as Download.Ject, and bring those responsible for this criminal act to justice.
On Thursday, June 24, at 4:00 p.m. PDT, Microsoft responded to reports that some enterprise customers running un-patched versions of IIS 5.0 (Internet Information Services), a component of Windows 2000 Server, were being targeted by malicious code, known as Download.Ject. More information is available at: http://www.microsoft.com/downloadject This site will be updated as new information becomes available.