Scareware (also known as “rogue security software”) is a new breed of malicious software that pretends to be the good guy in the war against viruses and worms.
Scareware is any kind of fake software that appears to help protect your computer’s security, but instead generates misleading or annoying alerts and might attempt to trick you into paying money for a useless product. According to a recent article in USA Today, scareware is popping up in more and more places, including ads on popular Web sites, comments on YouTube and Twitter.
If you think you may have downloaded scareware, you can help protect your computer by using the Windows Live safety scanner or running the Microsoft Malicious Software Removal Tool.
For more information, see Beware of rogue security software.
We've recently heard about a new phishing scam that targets Windows Live Hotmail users. If you see an e-mail message that looks like the one below, do not respond. Delete it or click Junk to mark the sender as unsafe and delete the message.
The most important clue that this is a phishing scam is the request for personal information. The Windows Live team does not request passwords, user names, or other personal information via e-mail.
(click image for larger view)
For more information, see Recognize phishing scams and fraudulent e-mail.
Microsoft Vice President of Trustworthy Computing, Scott Charney, attended a meeting at the White House earlier this month where President Obama announced the results of a study of U.S. policies and structures for cybersecurity.
The study acknowledges that information and communications networks are largely owned and operated by the private sector, which means that the government must work with corporations like Microsoft to address network security issues.
For more information about the results of the study, read Charney's blog entry An Important Step in Advancing Cybersecurity in the Microsoft on the Issues blog or download a PDF copy of the White House Cyberspace Policy Review.
On our End to End Trust Web site, you can also watch a video of Scott Charney discussing Microsoft's efforts to work with governments to fight cybercrime and help secure the Internet.
Today Microsoft unveiled Microsoft Security Essentials, a no cost beta version of a new kind of hassle-free security software designed for people who don’t want to spend too much time thinking about computer security.
Download the beta.
Sales of Microsoft’s current antivirus software, Windows Live OneCare, will stop in September 2009. If you have a OneCare subscription, rest assured that you will be supported until that subscription runs out. For more information, see Facts about OneCare.
Microsoft Security Essentials is a standalone download for the Windows XP, Windows Vista, and Windows 7 operating systems.
“Customers around the world have told us that they need comprehensive, ongoing protection from new and existing threats, and we take that concern seriously,” said Amy Barzdukas, senior director of product management for the Online Services and Windows Division at Microsoft.
“This new, no-cost offering will give us the ability to protect an even greater number of consumers, especially in markets where the growth of new PC purchases is outpaced only by the growth of malware.”
Microsoft releases security updates on the second Tuesday of every month. Today Microsoft released 10 new security updates.
Get the updates
To download the updates, visit the Microsoft Update Web site. If you have automatic updating turned on, your computer will update and install these security updates.
Read more about the updates.
Watch a short video about the updates.
Get technical information about the updates
For technical details, visit Microsoft TechNet.
Microsoft releases security updates on the second Tuesday of every month. Today Microsoft released 1 security update for Microsoft Office
Get the updates
To download the updates, visit the Microsoft Update Web site. If you have automatic updating turned on, your computer will update and install these security updates.
Read more about the updates
To find out more about the updates, see Microsoft Security Updates for May.
Get technical information about the updates
For technical details, visit Microsoft TechNet.
Microsoft understands that most people just want technology that solves real world problems like ID theft, online fraud, and child safety. But End to End Trust cannot be realized through technology—we must also align technology innovation with social, political, economic, and IT forces.
To this end, we recently launched a new End to End Trust Web site. The site includes a video wall that features CEOs, Chief Information Security officers, founders of computer security alliances, and other influencers. Watch these videos to learn more about End to End Trust. Want to participate? Visit the community page.
Microsoft releases security updates on the second Tuesday of every month. Today Microsoft released 8 security updates.
Get the updates
To download the updates, visit the Microsoft Update Web site. If you have automatic updating turned on, your computer will update and install these security updates.
Read more about the updates
To find out more about the updates, see Microsoft Security Updates for April.
Get technical information about the updates
For technical details, visit Microsoft TechNet.
The Microsoft Malware Protection Center blog reports that the Conficker name is being used to spread malware. Malware that disguises itself as security software is known as rogue security software –or "scareware" -- and it's on the rise.
Conficker is a computer worm that's been in the news (and in this blog) lately. Now malware criminals are trying to take advantage of the publicity about Conficker.
The good news is that if you have automatic updating turned on, your computer is probably not infected with the Conficker worm. If you're not sure, go to http://go.microsoft.com/fwlink/?LinkId=148275 to verify your settings and check for updates.
For more information, see Cashing in on Conficker's Bad Name.
Since June of 2006, Microsoft has released a new Security Intelligence Report (SIR) every six months. The report covers new findings in the field of computer security, including malware (malicious software), viruses, worms, spam, phishing scams, and other fraud.
Volume 6 of the SIR was released today.
Download the full report and the key findings summary.
Find out how you can protect yourself against the threats SIR Volume 6 reveals.
In the last few weeks, the Internet has been rife with rumors about how the Conficker worm was set to explode (or at least release a mysterious payload) on April 1.
April 1, 2009 is now in our rear view mirror and so far not much has changed.
Microsoft recognizes that crime on the Internet is a problem. We are working with technology industry leaders and academia to coordinate a global approach to combating the Conficker worm.
Microsoft researchers, along with partners in the Conficker Working Group, have been watching closely (and will continue to watch closely). So far they don't report any new malicious activity from Conficker. According to a recent post on the Microsoft Security Response Center (MSRC) blog, they haven’t seen any actions outside of what they expected.
Still worried about Conficker? Follow these steps:
For more information, see Microsoft.com/conficker or the Microsoft Security Response Center blog and the Microsoft Malware Protection Center blog.
If you're still concerned about Conficker, you can get more information and free support by going at Microsoft.com/protect.
I recently received the fraudulent e-mail message that's copied at the bottom of this post. It has all of the hallmarks of the classic e-mail scam:
· It references “my recent purchase,” but I haven't purchased any tickets on Delta.
· "Joe Abraham" did not send it from a Delta e-mail address.
· It has a ZIP attachment that "Joe" tells me to print.
· It contains grammar mistakes (for example: "We recommend you to print PASSENGER ITINERARY RECEIPT and take it alone to the airport.")
· It contains the promise of something for nothing. (I didn't buy this ticket, but can I get a free trip if I print out the itinerary and take it to the airport?)
If you've received this e-mail or something like it, tell us about it in the comments section below. If you're not sure what to do with the message, see How to handle suspicious e-mail.
For more information on how to spot classic e-mail scams like this one, see Recognize phishing scams and fraudulent e-mail.
-----Original Message-----
From: Joe Abraham [mailto:anton@ucoz.com]
Sent: Saturday, March 21, 2009 1:05 AM
To: Marcelle Amelia
Subject: Confirmation of ticket purchase DOW4P5GZSV
Thanks for the purchase!
Booking number: 68Q5R0EPNMTW
You will find attached to this letter PASSENGER ITINERARY RECEIPT of your electronic ticket.
It verifies that you paid the ticket in full and confirms your right for air travel and luggage transportation by the indicated flight Delta Air Lines.
On board you will be offered:
- beverages;
- food;
- daily press.
You are guaranteed top-quality services and attention on the part of our benevolent personnel.
We recommend you to print PASSENGER ITINERARY RECEIPT and take it alone to the airport. It will help you to pass control and registration procedures faster.
See you on board!
Best regards,
Delta Air Lines
The Conficker computer worm is still out there, and despite continuous work by security researches, it can still wreak havoc on unprotected computers and networks.
If you haven't visited Microsoft Update, go there now to verify your settings and check for updates. To learn how you can have your computer updated automatically, see Update your PC automatically.
We recently updated our guidance regarding this worm to include information about two new variants, Conficker C and Conficker D. For more information, see Protect Windows from Conficker.
To help remove the worm, try these tools:
A post on Slashdot recently pointed to an interesting new method that scammers use to collect e-mail addresses and distribute unwanted and possibly dangerous software (also known as malware).
In Grand Forks, North Dakota several people found fliers on their cars that looked like parking tickets. The fliers directed them to a phishing Web site where, if they clicked on an executable file, malware was installed on their computer.
For more information about this scam, see Malware infection that began with windshield fliers.
To help avoid phishing scams, see Recognizing phishing scams and fraudulent e-mail and How to handle suspicious e-mail.
If you follow computer security closely, you won't be surprised to know that U.S. President Barack Obama is the subject of many different online scams.
Whenever someone or something is big news, scammers, phishers, and virus writers use the news to try to trick us out of our money.
According to the Microsoft Malware Protection Center Threat Research and Response Blog, scammers have registered several Web sites with the word "Obama" in the address.
The Web sites are designed spread malware, collect e-mail addresses, and aid in other scams. Scammers send links to these Web sites in e-mail and instant messages.
To learn more about these scams, see Waledac Trojan Hosted by Fake Obama Web site.
Some scammers even are using the recent U.S. economic stimulus bill as a lure, promising the recipient a stimulus check. These e-mail messages claim to be from the IRS and ask you to fill out a form in order to receive the check.
To help protect yourself against these and other online scams, don't click links in e-mail and don't fill out forms online, unless you know that the site you're on is secure.
For more information about how to tell if a site is secure, see Internet Explorer goes green for "go."
