RSS Archive Contact Us Advertise

IT Management Begins With Security
SecurityProNews > Insider Reports > Insider > Barracuda Flags Virus Sent Via Fake Microsoft Email Update
Search:
[ insider_reports_insider ]

Barracuda Flags Virus Sent Via Fake Microsoft Email Update



Mike Sachoff
Staff Writer
2008-10-10

SecurityProNews: Insider Reports Insider Reports RSS Feed


Barracuda Networks has detected and begun blocking a malicious "backdoor" virus distributed through a socially engineered email made to look like it was coming from Microsoft.

Barracuda Flags Virus Sent Via Fake Microsoft Email Update
Barracuda Flags Virus Sent Via Fake Microsoft Email Update

The virus, categorized by Barracuda Central as "Trojan. Backdoor Haxdoor," is delivered as an attachment to an email allegedly from the Microsoft Security Assurance team and utilizes several social engineering techniques, such as using Microsoft KnowledgeBase naming conventions for the file attachment, as well as the inclusion of a PGP signature block at the bottom of the email message.

The email informs the recipient "Microsoft company has recently issued a Security Update for OS Microsoft Windows. The update applies to the following OS versions: Microsoft Windows 98, Microsoft Windows 2000, Microsoft Windows Millenium, Microsoft Windows XP, Microsoft Windows Vista."

The bogus email also "strongly" recommends that the recipient install an "update" to protect your computer against security threats and performance problems." Once installed the malware "phones home" and leaves an outbound TCP connection open to await further instructions.

"The leverage of the Microsoft name, the inclusion of an apparent PGP signature block - frequently used by security professionals - and the routine nature in which users are accustomed to applying software updates make for a dangerous and potentially effective combination of social engineering techniques in this particular attack," said Stephen Pao, vice president of product management for Barracuda Networks.

"Unsuspecting users without the proper virus protections in place, could mistakenly install the malware."


About the Author:
Mike is a staff writer for WebProNews. Visit WebProNews for the latest ebusiness news.

More insider_reports_insider Articles

SecurityProNews: Insider Reports Insider Reports RSS Feed

Get Your Site Submitted for Free in the World's Largest B2B Directory!

Email Address:
* URL:
*
*Indicates Mandatory Field

Terms & Conditions

iEntry Featured Services: Jayde Member Services | Forums | Freeware | Advertise with Us

Contact Us | Advertise | Newsletter Archive | Sitemap | Submit an Article | News Feeds
SecurityProNews is an iEntry, Inc.® publication - 1998-2008 All Rights Reserved | Privacy Policy and Legal		 Join the WebProWorld Forums: Click Here
Virus Warnings

Subscribe to
SecurityProNews FREE!


[ more newsletters ]

Featured On:
article resources
Search Articles:
[advanced search]

WebProWorld.com
Get in-touch with industry experts and leaders
Post your site for review by expert and peers
Ask Security, IT, Development and Design questions

Free Membership: Join Now!

Visit WebProWorld.com

Titan Quest Forum
The #1 Titan Quest forum
Halo 3 Forum
The best Halo, Halo 2, Halo 3 forum
Nintendo Wii
Nintendo Wii news and views
Mac Software
The best in OS X freeware
Graphics Forum
Your source for graphic tutorials
SecurityProNews.com | Breaking eBusiness News Get Your IT Questions Answered - Click Here SecurityProNews News Feeds