Spam Exploiting Windows Flaw
We've spotted multiple reports of junk e-mail going around that -- when opened or even just previewed on vulnerable Microsoft Windows machines -- tries to download a very nasty piece of malware called "WootBot", which allows hackers to control victims' computers remotely and steal personal data from infected computers.
To install Wootbot, the spam tries to exploit a flaw in how Windows handles image and cursor files. People who are not patched against the flaw and who are using older versions of the Outlook e-mail program could be highly vulnerable, because users do not even have to open the e-mail to get infected. The exploit can download to a vulnerable machine even if the user merely views the e-mail in the preview pane.
If you're not up-to-date on your Microsoft Windows patches, now would be a good time to fix that by visiting Windows Update.
Microsoft released a fix for this problem back in January, but evidently the patch is creating problems for some Windows 98, Windows 98SE and Windows ME users.
The comments to this entry are closed.