posted on February 12, 2001 07:40:08 PM
This one almost got me. I received a security update email from [email protected] concerning Office 2000, Bulletin MS01-001. The only reason I didn't open it was because it was over 25K in size. There's no possible way a Microsoft bulletin could be that large so I decided to look at the message source and noticed that it wasn't digitally signed using PGP AND the bottom of the message had an attachment - update.exe.
I receive these updates on a regular basis and I know that Microsoft always digitally signs them and NEVER includes the patch exe in the email itself. They always include a link to one of their sites where the patch can be downloaded.
This email is bogus so please DELETE IT AND DON'T INSTALL THE PATCH!! Microsoft is aware of this bogus email and has a warning posted on their site. I have no idea what's in the attachment and I have no intention of opening it to find out. I'll let someone else do that. http://www.microsoft.com/technet/security/bogus.asp
Blanche
[ edited by bhearsch on Feb 12, 2001 07:45 PM ]
I received a security update email from 