Rogue Microsoft Services Agreement Email Notifications Lead to Latest Java Exploit

**Brink** · 03 Sep 2012

Hackers are distributing rogue email notifications about changes in Microsoft's Services Agreement to trick people into visiting malicious pages that use a recently circulated Java exploit to infect their computers with malware.

"We're receiving multiple reports of a phishing campaign using the template from a legitimate Microsoft email regarding Important Changes to Microsoft Services Agreement and Communication Preferences," Russ McRee, security incident handler at the SANS Internet Storm Center, said Saturday in a blog post.

The rogue email messages are copies of legitimate notifications that Microsoft sent out to users to announce changes to the company's Services Agreement that will take effect Oct. 19.

However, in the malicious versions of the emails, the correct links have been replaced with links to compromised websites that host attack pages from the Blackhole exploit toolkit.

Read more at source:
Rogue Microsoft Services Agreement Email Notifications Lead to Latest Java Exploit | PCWorld Business Center

**townsbg** · 03 Sep 2012

Unfortunately this has gotten so bad you can't even trust emails from your known contacts such as friends or family.

Similar Threads
Thread	Thread Starter	Forum	Replies	Last Post
Cyber Spies Exploit Java and Flash Flaws	Brink	Vista News	0	17 May 2012
Latest Version Of Java	tom982	Browsers & Mail	6	08 May 2012
Exploit:JS/Blacole.CE and Exploit:Java/Blacole.DW	Peter Hurry	System Security	3	18 Feb 2012
Beware - fake email, microsoft update notifications	scousa4lyf	System Security	18	13 Oct 2008
Microsoft Appoints Nadella to Lead Microsoft Business Solutions	z3r010	Vista News	0	12 Sep 2006

Rogue Microsoft Services Agreement Email Notifications Lead to Latest Java Exploit

Re: Rogue Microsoft Services Agreement Email Notifications Lead to Latest Java Exploi

Posting Permissions