Windows 7: Rogue Microsoft Services Agreement Email Lead to Latest Java Exploit

Brink · 03 Sep 2012

Quote:

Hackers are distributing rogue email notifications about changes in Microsoft's Services Agreement to trick people into visiting malicious pages that use a recently circulated Java exploit to infect their computers with malware.

"We're receiving multiple reports of a phishing campaign using the template from a legitimate Microsoft email regarding Important Changes to Microsoft Services Agreement and Communication Preferences," Russ McRee, security incident handler at the SANS Internet Storm Center, said Saturday in a blog post.

The rogue email messages are copies of legitimate notifications that Microsoft sent out to users to announce changes to the company's Services Agreement that will take effect Oct. 19.

However, in the malicious versions of the emails, the correct links have been replaced with links to compromised websites that host attack pages from the Blackhole exploit toolkit.

Read more at source:
Rogue Microsoft Services Agreement Email Notifications Lead to Latest Java Exploit | PCWorld Business Center

**x BlueRobot** · 09 Sep 2012

I never open an e-mail or visit a link within a website, from an e-mail which I haven't subscribed to (newsletters, forums and job alerts etc.). The only time in which I do bother to check my e-mails, is when I have applied for jobs; which reminds me, I need to check my e-mails :P

Windows 7: Rogue Microsoft Services Agreement Email Lead to Latest Java Exploit

Rogue Microsoft Services Agreement Email Lead to Latest Java Exploit problems?