Fake Microsoft Patch Triggers Virus Attack

← Back to Stories (view on slashdot.org)

Fake Microsoft Patch Triggers Virus Attack

Posted by Zonk on Saturday May 21, 2005 @12:18AM from the watch-what-you-click dept.

boarder8925 writes "eWeek reports: 'Like day follows night, a bogus cumulative update with a malicious attachment has followed Microsoft's patch day. In what has become a monthly staple, virus writers are taking advantage of the heightened public interest around Microsoft's patching cycle to trick users into executing a malicious attachment. The latest social engineering trick arrives via e-mail with an attachment that purports to be a 'cumulative patch' for May 2005.'"

29 of 275 comments (clear)

Min score:

Reason:

Sort:

This is why the "double standard" by Anonymous Coward · 2005-05-21 00:22 · Score: 4, Insightful

This is why when there's a security flaw in Firefox or the Mac people come out to say "thank gosh it was dealt with quickly, as usual."

The situation with microsoft has reached a certain critical mass where there is no public awareness of an objective security reality.

Here there be dragons. Beware.

Undoubtedly a dozen comments will say something like "If users would just follow a few simple rules..." What is the trusted source for those simple rules now that the situation is so out of hand?

Dark days indeed.
1. Re:This is why the "double standard" by Anonymous Coward · 2005-05-21 00:43 · Score: 5, Insightful
  
  The simple rule is to know what you're doing, or, if you don't know what you're doing, have it done by someone you trust. People don't start working on their cars unless they know what they're doing. They have the maintenance done by a mechanic or an experienced friend. Yet somehow we think that computer maintenance should be done by complete ignorants. It's never going to work.
2. Re:This is why the "double standard" by Smidge204 · 2005-05-21 00:45 · Score: 3, Insightful
  
  What is the trusted source for those simple rules now that the situation is so out of hand?
  
  How about http://www.microsoft.com/ instead of your e-mail's inbox?
  =Smidge=
3. Re:This is why the "double standard" by bigman2003 · 2005-05-21 01:53 · Score: 5, Insightful
  
  Good point...
  
  BUT, I work in a small IT department- and we spend about 1/2 of our weekly meeting talking about how 'stupid' these users are.
  
  Not saying that I don't take part in the conversation...but I keep thinking to myself, "They aren't supposed to know this stuff, it isn't their job, it's OUR job."
  
  I really hate it when we get on our high-horses and look down at people because they don't know as much about the computer they use as we do. I would hope not, otherwise we would be some weak-ass IT people.
  
  I'm guilty to, and every IT person I have ever met is just as guilty. But when we need to purchase something, we walk over to the purchasing people and say 'I have no idea what I am doing, but I need to order this thing...' I wonder if when we leave, they all start laughing at us and call us a 'bunch of fucking idiots.'
  
  I hope so...because we have some real arrogant bastards in IT who really need to realize that nobody else really gives a damn about the difference between right-click and left click...
  
  --
  No reason to lie.
4. Re:This is why the "double standard" by Blkdeath · 2005-05-21 02:18 · Score: 4, Insightful
  
  The simple rule is to know what you're doing, or, if you don't know what you're doing, have it done by someone you trust. People don't start working on their cars unless they know what they're doing.
  
  Conversely, many people start working on cars to learn how to do it.
  
  --
  BD Phone Home!
  Shameless plug. Like you weren't expecting it.
5. Re:This is why the "double standard" by bsander · 2005-05-21 03:08 · Score: 3, Insightful
  
  Yeah, but not when they need that car the next morning to get to work. They usualy just get a piece of junk to toy with.
6. Re:This is why the "double standard" by Blkdeath · 2005-05-21 03:29 · Score: 3, Insightful
  
  Yeah, but not when they need that car the next morning to get to work. They usualy just get a piece of junk to toy with.
  
  To steer back towards the topic; how many home computers are vital to a person's livelyhood? How many of us learned much of our IT skills by breaking and subsequently fixing our own (read: our parents') home PCs?
  
  --
  BD Phone Home!
  Shameless plug. Like you weren't expecting it.
7. Re:This is why the "double standard" by Filip22012005 · 2005-05-21 04:17 · Score: 2, Insightful
  
  Similarly, I'm always a bit annoyed by people on Slashdot calling the less computer-savvy "Joe Luser". Come on! Here's a guy that didn't spend all of his friday nights behind his computer, and as a result has some difficulty with badly designed software. Why call him a Loser?
  
  --
  When the policeman of the tie, rule you violate, hello punishment of the kitty?
8. Re:This is why the "double standard" by bigman2003 · 2005-05-21 04:52 · Score: 3, Insightful
  
  Because many of the users are only using their computer to complete a task that is part of their bigger job.
  
  When I photocopy a set of manuals (that I wrote, just in case you were concerned with copyright...) in order to give a presentation, I put the paper in the copier and press 'start'.
  
  If it doesn't work the way it should, I take the originals out of the machine, and find a different copier that will work for me.
  
  I don't try to figure out what is wrong with the copier...or how to make booklets, instead of just stapled stuff. Or how to even print from my computer. Because I just don't care. I have enough stuff to think about that the copier should be something that doesn't require any thought at all.
  
  90% of the workforce feels the same way about their computer. We have people who are paid to edit books...and they know how to use all the advanced features in Microsoft Word far better than I would ever even dream of. But the moment there is a problem with their e-mail...they are lost.
  
  That's okay...because I can't punctuate correctly to save my life. But boy, I can make sure the e-mail server is functioning...
  
  --
  No reason to lie.
9. Re:This is why the "double standard" by Jedi+Alec · 2005-05-21 07:48 · Score: 2, Insightful
  
  BUT, I work in a small IT department- and we spend about 1/2 of our weekly meeting talking about how 'stupid' these users are.
  
  My personal guideline is as follows: any IT specialist, whatever his or her expertise may be, that cannot differentiate between "being stupid" and "not knowing much about computers" needs to be kept as far away from actual users as possible.
  
  I don't know why, but for some reason IT workers consider themselves as really special, as opposed to what they really are, the people that provide the tools for others to do their work with. Yes, a blacksmith that makes good hammers so a carpenter can build houses might be a skilled craftsman, but so is said carpenter. Someone who writes and maintains an applicatian to control finances isn't any more special than the accountant who uses it to actually control said finances.
  
  --
  
  People replying to my sig annoy me. That's why I change it all the time.
Only the stupid... by Anonymous Coward · 2005-05-21 00:22 · Score: 1, Insightful

Who would fall for this? It would be like taking random "prescription medicine" which comes through the mail.
How is this news? by shyampandit · 2005-05-21 00:24 · Score: 4, Insightful

I wonder how slashdot posts stuff like this, which is very common thing, that has been done numerous times.

Social Engineering is getting to be an easier way for the script kiddes to get more victims, as more people put SP,2 which has the firewall enabled by default and so the usual attacks dont work.
1. Re:How is this news? by bcmm · 2005-05-21 02:21 · Score: 1, Insightful
  
  This is GOOD! If it isn't worth anyone's while to make proper attacks, we don't need to bother with securing anything! We just avoid doing stupid things like we always did. All we need is to make sure that there are always enough stupid users that the script kiddies continue to launch only social engineering attacks.
  
  So, all sysadmin /.ers reading this, keep your users stupid. It's in everyone's best interests (except your user's, obviously). If you teach them not to open attachments, you will soon be having to protect your own machine against proper cracking attempts.
  
  --
  # cat /dev/mem | strings | grep -i llama
  Damn, my RAM is full of llamas.
Re:Well... by Anonymous Coward · 2005-05-21 00:26 · Score: 0, Insightful

dude Read The Fucking Headline..

virus writers are taking advantage of the heightened public interest around Microsoft's patching cycle to trick users into executing a malicious attachment .. this means that microsofts update didn't actually cause the harm itself directly, but dickheads who spread that stuff pretended to be microsofts update...

and as for TFA..
Fake Microsoft Patch Triggers Virus Attack
is the headline.

-SJ53
Stupid people by whackco · 2005-05-21 00:26 · Score: 2, Insightful

Anybody still stupid enough to open attachements in emails like this DESERVE to get infected and have their harddrives ERASED.

Better yet, too bad the virus can't mutate from electronic to biologic means, that might solve our problems.

I see stupid people.
1. Re:Stupid people by dos_dude · 2005-05-21 00:32 · Score: 2, Insightful
  
  Anybody still stupid enough to open attachements in emails like this DESERVE to get infected and have their harddrives ERASED.
  
  Yeah. But the problem is that these people aren't having their harddrives erased, they have their machines turned into zombies so we don't run out of spam, bounces, and worms.
2. Re:Stupid people by m50d · 2005-05-21 01:03 · Score: 4, Insightful
  
  Why? They're just doing what they've been taught. They've been taught that anyone can use a computer (that's what all the MS advertising says). They've been taught that anyone can use the internet (that's what all the AOL advertising says). They've been taught that if they don't click yes at dialog boxes, things don't work (A very similar security warning is seen two or three times when logging in to hotmail. So users learn they're not serious) How can you blame them for simply doing what they've been taught?
  
  --
  I am trolling
3. Re:Stupid people by BenjyD · 2005-05-21 01:42 · Score: 4, Insightful
  
  But if they weren't so stupid and actually stopped to think for five seconds they might think "Hang on, how does Microsoft know my email address?"
Patches by jokestress · 2005-05-21 00:27 · Score: 2, Insightful

"When you're going down a path of destruction, you can keep putting patches on the tires - patch, patch, patch - but eventually the tire is going to burst."
-- From an article on the imminent collapse of Zimbabwe, but it seemed germane to the thread...

--
Evil sig is livE.
You know what'd stop lame social engineering by Anonymous Coward · 2005-05-21 00:31 · Score: 5, Insightful

In Gavin De Beckers book 'The Gift of Fear' he says that an effective way to stop assassins topping off high profile people is not to give them glorious media write ups. Bring 'em down a notch by stating what they are - savages who don't deserve civilization. Bruce Schneier talks about the same thing-publicity attacks. People who want attention. So stop paying attention to them.
Now, I'm all for making public the attacks but I think we should start bagging out the actual attackers. Cmon, social engineering through an email? Sure it'll fool a few people, and a few people is all you need to bring down a network, but let's patronise these guys. They're fuckin' con men for pete's sake and lame conmen at that. The only people they're tricking is morons. I move for guys like this to be put down at every chance.

Stop glorifying criminals!
1. Re:You know what'd stop lame social engineering by MichaelSmith · 2005-05-21 01:17 · Score: 4, Insightful
  
  Well I have long held the opinion we spend far too much money particularly protecting politicians. I think we should spend less and if a few of them get knocked off they it will help to filter out the self serving interest bastards.
  Iraq seems to be trying this approach. It doesn't appear to be improving the situation for the populace as a whole.
  
  --
  http://michaelsmith.id.au
2. Re:You know what'd stop lame social engineering by Timesprout · 2005-05-21 01:49 · Score: 1, Insightful
  
  Actually it does improve the situation because it shows the populace are not prepared to accept a bunch of puppets foisted on them in a rushed and incomplete election because the political leadership of an occuping force wanted brownie points for their own election campaign.
  
  --
  Do not try to read the dupe, thats impossible. Instead, only try to realize the truth
  What truth?
  There is no dupe
Social Engineering? by Anonymous Coward · 2005-05-21 00:36 · Score: 1, Insightful

I never understood calling it social engineering. These people make our lives miserable, why give them a "nice" bullshit name?
Re:2 Words by idonthack · 2005-05-21 01:05 · Score: 2, Insightful

How is that off topic? ... No one gets the joke.. *sigh*

If it seems like nonsense to a mod, it goes down. So.... I'm confused too.

--
Why is it that when you believe something it's an opinion, but when I believe something it's a manifesto?
Oh here we go again. Have a pop at MS by tobybuk · 2005-05-21 01:23 · Score: 2, Insightful

Since when is it Microsoft's fault that people are duped into running this?

Anything that mentions Windows here on slashdot results in a barrage of 'Linux' this and OSS that and how wonderful Firefox is etc etc.

Well people, if Firefox ever reached the 90% usage that IE has exactly the same kind of scam would happen when a Firefox patch was issued.

Am I the only one here over 21 and not still at school?
Re:Oh here we go again. Have a pop at MS by pandrijeczko · 2005-05-21 02:32 · Score: 2, Insightful

Since when is it Microsoft's fault that people are duped into running this?
Microsoft are partially responsible.

After all, where in all of their glossy ads for Windows XP, Office, etc. etc. does it mention that it's important to apply regular security updates, use a virus checker and never open attachments you don't trust?

They're more than happy to sell the illusion of ease and simplicity to gullible idiots so it is as much their fault as it is Joe Sixpack's ignorance.

--
Gentoo Linux - another day, another USE flag.
I doubt it has to do with timing... by MadAnthony02 · 2005-05-21 03:24 · Score: 2, Insightful

Yes, the techies who read slashdot (and other tech news) and who work on computers all day know that Microsoft released a bunch of patches, but I would guess the average user doesn't. I would certainly guess that someone who doesn't know enough not to click on executable attachments in email, and doesn't know that Microsoft doesn't email it's patches to user, would not know that MS released a bunch of patches.

I think Slashdot has overestimated the cunning of the virus author and his timing..

--
I have blog like everyone else
Re:Nice confirmation of the fact... by drsmithy · 2005-05-21 04:12 · Score: 2, Insightful

However, with a better security based system, [...]
Like the one NT has had since 1993, you mean ?

[...] the virus would be contained to user level processes and hopefully not compromise the system. The user would lose their crap.

So they'd only lose the most important data ? I'm sure that would be comforting.
It's a much more general education thing by jesterzog · 2005-05-21 09:34 · Score: 3, Insightful

... that the best software in the world couldn't protect you from the stupidity of the guy in front of the monitor. Makes you wonder who is worse: Microsoft or their users?

Not properly evaluating or understanding attachments that are sent via email is synonymous to not critically evaluating any information that's received... such as faithfully believing whatever happens to be published on the television evening news.

Personally I'm not sure if it's so much a computer training issue. A lot of these problems might be solved in one go, if only the education system could focus a bit more on training people to be critical and cautious of all information that they receive.

I'm not trying to imply that this is all the education system's fault, either. Society's just screwed up right now, and there are so many contradictory messages out that that completely undermine so much of what good education actually has to offer.