CyberHQ.Net

I received an email a while ago. The email wanted me to upgrade the Microsoft Outlook or Outlook express. It actually attached an upgrade of the patches as well.

This is the first time that i received such an email.

Below is the email content:-

Brief Description

Microsoft has released an update for Microsoft Outlook / Outlook Express. This update is critical and provides you with the latest version of the Microsoft Outlook / Outlook Express and offers the highest levels of stability and security.

Instructions

* Install Update for Microsoft Outlook / Outlook Express (KB910721). To do this, follow these steps:

1. Run attached file officexp-KB910721-FullFile-ENU.exe

2. Restart Microsoft Outlook / Outlook Express

System Requirements

* Supported Operating Systems: Windows 2000; Windows 98; Windows ME; Windows NT; Windows Server 2003; Windows XP; Windows Vista

* This update applies to the following product: Microsoft Outlook / Outlook Express

As you can see the patches name is officexp-KB910721-FullFile-ENU.exe and it has been zip up. Logical thinking tells me that this email is not from Microsoft although the sender name is from Microsoft Support. This is because as you know,  normally any windows updates will be done via downloading from Microsoft auto update utility. Moreover the sender address is not from Microsoft also. Therefore i can tell you that this is some sort of phishing or virus to be spread and install to the email client and exploit it.

I’m wondering why my Eset antivirus is not blocking,delete or quarantine the attachment. Anyway should you come across this email, beware! DO NOT download the zip file and extract and install it. DELETE the email immediately. Or probably search what’s others say.

Updates: Received another same email again this morning and my Eset antivirus has deleted it successfully.

As I’d reported previously about phishing scam has taken place over the internet. Be it my self experience or article that i read. Today i read this interesting article on how do you really identify a phishing scam and i think i should share with you as well.

What is phishing – The strange name sounds a lot like the fishing you do in a lake with a pole. That’s because it’s a similar process: phishers apply bait and wait for a bite. They want you to be the fish.

Your bank just sent you an e-mail. You open it up and the bank claims to have found an error in your favor. “Click here” to claim the money which is rightfully yours! The old saying still has resonance in this connected age. If it sounds too good to be true, it probably is.

This may get a little techy, but it’s something any internet user should learn. The URL (Uniform Resource Locator), which is the web page’s full address, is a telling hint toward whether you’re being scammed.

Your location bar is usually up at the top of the window you use for web browsing. The text inside starts with http:// or https://. The part that comes immediately after that is the host name, like /wired.com/. Sometimes, instead it has extra words up front, like /howto.wired.com/. That’s called a sub-domain.

Read the full article HERE.

To me, i think the best practice is always remember of a sentence – THERE IS NO FREE LUNCH IN THIS WORLD.