2015 03 26 Microsoft does not distribute security updates via email

Today I received the Microsoft Security Advisory Notification shown below in its entirety.   I felt this deserved some special attention. 

Read the following excerpt from the advisory:

If you receive an email message that claims to be distributing a Microsoft security update, it is a hoax that may contain malware or pointers to malicious websites. Microsoft does not distribute security updates via email.”

Microsoft has issued this statement because a great many people are being tricked into executing malicious attachments sent to them in bogus emails from Microsoft.

The results of executing these malicious attachments are varied.  You might have just installed a keyboard logger, or some new variant of Cryptolocker.  A banking Trojan could be hidden in the background, waiting to steal your username and password as you login to your bank’s website to pay some bills.

The point is, you shouldn’t indiscriminately click on attachments whether they are purportedly from Microsoft, Adobe or your best friend or a co-worker.  Give it some thought before you open that attachment!

Dennis Strain
Enclave Managed Networks
1-877-877-8793 toll-free phone & fax
dstrain@enclave365.ca

 

—–BEGIN PGP SIGNED MESSAGE—–

Hash: SHA256

 

********************************************************************

Title: Microsoft Security Advisory Notification

Issued: March 26, 2015

********************************************************************

 

Security Advisories Updated or Released Today ==============================================

 

* Microsoft Security Advisory (3050995)

– Title: Improperly Issued Digital Certificates Could Allow

Spoofing

https://technet.microsoft.com/library/security/3050995

– Revision Note: V2.0 (March 26, 2015): Advisory rereleased to

announce that the update for supported editions of Windows

Server 2003 is now available. See Knowledge Base Article 3050995

for more information and download links.

 

Other Information

=================

 

Recognize and avoid fraudulent email to Microsoft customers:

=============================================================

If you receive an email message that claims to be distributing a Microsoft security update, it is a hoax that may contain malware or pointers to malicious websites. Microsoft does not distribute security updates via email.

 

The Microsoft Security Response Center (MSRC) uses PGP to digitally sign all security notifications. However, PGP is not required for reading security notifications, reading security bulletins, or installing security updates. You can obtain the MSRC public PGP key at <https://technet.microsoft.com/security/dn753714>.

 

********************************************************************

THE INFORMATION PROVIDED IN THIS MICROSOFT COMMUNICATION IS PROVIDED “AS IS” WITHOUT WARRANTY OF ANY KIND. MICROSOFT DISCLAIMS ALL WARRANTIES, EITHER EXPRESS OR IMPLIED, INCLUDING THE WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE.

IN NO EVENT SHALL MICROSOFT CORPORATION OR ITS SUPPLIERS BE LIABLE FOR ANY DAMAGES WHATSOEVER INCLUDING DIRECT, INDIRECT, INCIDENTAL, CONSEQUENTIAL, LOSS OF BUSINESS PROFITS OR SPECIAL DAMAGES, EVEN IF MICROSOFT CORPORATION OR ITS SUPPLIERS HAVE BEEN ADVISED OF THE POSSIBILITY OF SUCH DAMAGES.

SOME STATES DO NOT ALLOW THE EXCLUSION OR LIMITATION OF LIABILITY FOR CONSEQUENTIAL OR INCIDENTAL DAMAGES SO THE FOREGOING LIMITATION MAY NOT APPLY.

********************************************************************

 

Microsoft respects your privacy. Please read our online Privacy Statement at <http://go.microsoft.com/fwlink/?LinkId=81184>.

 

If you would prefer not to receive future technical security notification alerts by email from Microsoft and its family of companies please visit the following website to unsubscribe:

<https://profile.microsoft.com/RegSysProfileCenter/subscriptionwizar

d.aspx?wizid=5a2a311b-5189-4c9b-9f1a-d5e913a26c2e&%3blcid=1033>.

 

These settings will not affect any newsletters you’ve requested or any mandatory service communications that are considered part of certain Microsoft services.

 

For legal Information, see:

<http://www.microsoft.com/info/legalinfo/default.mspx>.

 

This newsletter was sent by:

Microsoft Corporation

1 Microsoft Way

Redmond, Washington, USA

98052

 

—–BEGIN PGP SIGNATURE—–

Version: PGP Desktop 10.2.0 (Build 1950)

Charset: utf-8

 

wsFVAwUBVRRAqL8Fv/Q6pUnlAQhExA//Wgv3WK3ZN78tlsC8NW7D2IkdSH+iv3eC

M+ULZpkqHOfOj5dvbQcCqu+OHypRGPDBJUJoNWMtbD6LPAhvV8mXpgSCP5wxu5i/

2GP3mIuU1YY65a+xrsAuRn9wnsYoVtVzQFpEFP7xVNafzhL07Cb4ny0mRHte7i3X

oZ8MJ/2BwbtUaQzRoHnVHOgZBUeOp8fvrn27cNWlbr0J6anjVny/b3efL33g1mhn

+rMx8IYbtAY64XarcobBGhynJa7jA+rMys6dpHcVD+NFbyZFbYO6oBK9aoVXisDf

HXPA/UulgSoo9xFD82jXhfBCocKZmkIEDzvqyu1Bis2SGLolLPZhsAr08Kaj+WYP

69YnFxG/WTIaR6Usdw4VNPCawB5kPIoMl8unj2clwWAWyzJeRRHBOLwhDfHqbVA5

fBxJTSvhI7JzIPKOThyiWunURVoI/Usb3L1LYE15TYrLeotAWhvLeG7cCqolME9r

qi/Ux9CL7R/rXP5jv+O51vs1ClfUy1XJB0YZ27b1oP6l2Z83gWAClAlJbeCAu4q8

hRPFnClxvYuDq5XUqdyEcx573RF0js9lLp0PaOca4IDauhOA3+72EecrGe4PSesg

Ny24QRnLRJF9fO4cYBwKEvIq+YRp5WTvqUAh6sW/Sx4td/ivGYsSlzBqb5iHdJsl

2n9g1sJDHb4=

=jpnq

—–END PGP SIGNATURE—–

About admin

System & network administrator Enclave Managed Systems
This entry was posted in Advise, Microsoft, News, Security. Bookmark the permalink.

Leave a Reply