A legitimate message about changes to the Microsoft Services Agreement has been spoofed into a Java phishing exploit

Warning issued over phony MSA email
Microsoft Corp. is one of the favourite targets of malware creators because of the ubiquity of the company’s software. According to a report carried by ComputerWorld U.S., another phishing attack has been issued leveraging Microsoft’s name, one that corporate IT managers need to be aware of.
 
This involves a phony email claiming that changes are being made to the Microsoft Services Agreement and based on a legitimate email (below) sent out Aug. 27. The phony email sends readers via a hyperlink to a Web site infected with the Blackhole Java exploit
 
 
The first warning came from the Internet Storm Center, which notes that the true nature of the scam can be revealed if a reader puts his cursor under the hyperlink and checks the resulting address without clicking on the link.
 
It also suggests IT departments consider disabling Java until the next update is released. That was also recommended last week after a report that the Blackhole tookit now includes a Java exploit. 
 
RELATED CONTENT
Experts warn of Java exploit
 
As for what’s in new new (legitimate) agreement,  see this report from The Verge. One change might be viewed as benign. However, note that those who agree also lose their right to go after Microsoft over disputes in class actions. Instead they’ll have to go to arbitration.
 
Related Download
Cisco Secure Mobility Knowledge Hub Sponsor: Cisco
Cisco Secure Mobility Knowledge Hub
This Knowledge Hub provides an end-to-end look at what it takes to discover, plan, and implement a successful Secure Mobility strategy.
Learn More
Share on LinkedIn Share with Google+ Comment on this article
More Articles