February 7, 2008: F-Secure unveils the Rogue Microsoft Update site.
F-Secure has spotted Rogue Microsoft update site that resembles like the original Microsoft Site. There are certain flaws in it that the end users need to be aware of. Note the real URL (cfm48.com) and the spelling errors ("Please intall"). On clicking the Urgent Install button, WindowsUpdateAgent30-x86-x64.exe file opens. This is not signed by Microsoft. This is a fast flux site and uses a wide range of IP addresses:
F-Secure want the internet users to be cautious about such rogue websites that can damage your PC.
For more information please logo on to: www.f-secure.com/weblog