Economic Times reports that a Windows vulnerability is making the rounds on the Internet under the disguise of a Windows critical Update. The Department of Information Technology (DIT) says that some of the fraudulent websites are propagating malicious programs under the guise of providing updates for the Windows operating system.

The website asks the user to click on a link to start the updating process. The funny thing here, according to ET, is that the word “install” is misspelled as “intall”. However, after reading the reports, will the error persist, we can’t say.

An Cyber Security Official in DIT said,

“As the virus is affecting Windows users and is targeted towards the Microsoft corporation, we have advised the users to adhere to the official guidelines of Microsoft to avoid any difficult situation”

The file is named WindowsUpdateAgent30-x86-x64.exe, and is actually a malware named Trojan- Dropper:W32/Agent.DYD bringing with itself another malware, identified as Backdoor:W32/Agent.CVU.        

The Cyber Security Wing of DIT has identified the following websites as the ones spreading the malicious code and have asked the users to block these websites.

• www8 DOT update microsoft DOT com DOT sec94 DOT in
• update DOT microsoft DOT com DOT cfm48 DOT com
• update DOT microsoft DOT com DOT asp63 DOT net.

Users are requested to update their antivirus and download the updates only from the authorized websites.

Bookmark this post to:

Related Posts

• Smishing Hits Mobile Users
• Now Ubuntu On Your Mobile Phone. Oh No! Wait! Not Yet
• Microsoft Asks (Warns) Hardware Makers to Test Windows 7 Early On
• China, US – 2 Of the Highest Sources of Traffic Attack: Akamai Report
• Did You Pledge For FireFox 3 World Record?