Mar31
10:05 am (UTC-7)   |   by Paul Oliveria (Technical Communications)

…it downloads a virus instead.

TrendLabs has received reports of a spammed email message that advises users to download an Internet Explorer 7 update. Below is the image attached in the said message:

PE_GRUM_B_O_img1.gif

However, once unsuspecting users click on this image, they are redirected instead to a Web site that downloads a file named IE7.0.exe. This file, while also legitimate-looking, is actually a file infector that Trend Micro detects as PE_GRUM.B-O.

Trend Micro always advises users to avoid clicking on links that come from untrusted sources. However, given this enhanced social engineering (it uses legitimate-looking IE7 images, etc.), I guess the lesson here is that while keeping one’s applications and programs updated is a good practice, users should just make sure that they go straight to the source (in this case, the Microsoft Web site), instead of someplace else. With the rise of Web-based threats that spoof even the “trusted” sites and/or organizations, it’s better to be safe than sorry.

If you're new here, you may want to subscribe to our RSS feed. Thanks for visiting!



This entry was posted on Saturday, March 31st, 2007 at 10:05 am and is filed under Uncategorized . Responses are closed, but you can trackback from your own site.



Comments are closed.


‘MOO alert: New undetermined Windows vulnerability arrives via .ANI files
The .ANImated Trojan


 
TrendWatch Hijack This Web Protection Add-On
Free Online Virus Scan Rootkit Buster Submit Suspicious Files
Global Malware Map RUBotted? Trend Micro
 

 
© Copyright 2009 Trend Micro Inc. All rights reserved. Legal Notice