Sign up for the Security newsletter

Worm Alert: this time it's a bogus email from Microsoft

Look out for Win32.Invalid.A@mm, to give it its proper name...

By Graham Hayday on 30 August 2001 17:50

NEWS Anti-virus vendors are again going into overdrive, warning users about an email which appears to come from Microsoft's technical support unit - but which in fact is the latest worm to hit the net. The mail appears to come from "Microsoft Support" support@microsoft.com, and has the subject line Invalid SSL certificate. The body text begins: "Hello, Microsoft Corporation announced that an invalid SSL certificate that web sites use is required to be installed on the user computer to use the https protocol." The mail carries a highly destructive payload: it can render .exe applications unusable by encrypting them with a random encryption key, according to security specilialist Central Command. At the time of publication, Central Command had only received one report of the worm in the wild, but is advising users to be vigilant. For more info, see http://www.centralcommand.com

Post your comment

In order to post a comment you need to be registered and logged in.

You can also log in with Facebook. Log in or create your silicon.com account below

  • Login

Will not be displayed with your comment

By signing up for this service, you indicate that you agree to our Terms and Conditions and have read and understood our Privacy Policy.

Questions about membership? Find the answers in the Membership FAQ

Get silicon.com's daily newsletter

  • Register on silicon.com

    Enter your email to register

Keep in touch with silicon.com

silicon.com newsletters