New Phishing Scam Cloaked As Security Update, Warns Security Methods Inc

Security Methods Inc. is warning customers to beware of bogus Microsoft Security Bulletins" that prompt recipients to download software with the potential to disable antivirus and similar protection controls. The so-called fixes actually install spyware or remote-control software," said Carson Sweet, the Virginia-based firms Principal Director. These fraudulent e-mails are using known Trojan horses, but were publishing special customer advisories because theyre particularly well-crafted pieces of social engineering."

Fairfax, VA (PRWEB) January 29, 2005 -- Security Methods Inc. is warning customers to beware of bogus Microsoft Security Bulletins" that prompt recipients to download software with the potential to disable antivirus and similar protection controls. The so-called fixes actually install spyware or remote-control software," said Carson Sweet, the Virginia-based firms Principal Director. These fraudulent e-mails are using known Trojan horses, but were publishing special customer advisories because theyre particularly well-crafted pieces of social engineering."

The company warns against assuming that firewalls will block remote-control and spyware connections. Many firewalls are only configured to control what comes in from the outside, permitting any internal connections to go out freely. As a result, malicious programs like those delivered by the fake bulletin can easily call out" to an attackers home base. Seemingly useful software that creates clandestine access channels, termed a Trojan horse," frequently exploits the same communication protocols that Web browsers use, say company officials. This makes it more difficult to pick out illicit traffic from legitimate, everyday Web browsing.

Once infected, an intruder can modify the victims computer to strengthen their hold and prevent detection. A Security Methods analysis of one message originating from Switzerland found code designed to download and install several intrusion packages using an interface closely resembling Microsofts Windows Update" system.
Company officials say that after such a compromise, the only way to recover a victimized system with certainty is to rebuild it from scratch. That takes time and is obviously disruptive to business. An ounce of prevention is really worth a pound of cure in this case," Sweet said. Antivirus software is a big help, but zero-day attacks, those that are brand new, can still make it through if antivirus signatures cant spot them yet. Its always a good idea to have a healthy distrust of unusual or unexpected emails, especially those that invite software downloads and installations," Sweet said.

About Security Methods Inc.
Security Methods is a leading information systems security provider that has met the protection needs of private industry and government agencies since 1996. Our mission is delivering direct, tangible, and cost-effective results to organizations demanding a higher standard of information security assurance. The companys sole focus is providing specialized automation, skills, and strategies that achieve powerful and sustainable information security.

From its headquarters in Virginias Dulles technology corridor, Security Methods offers security solutions fitting a broad range of financial and operational situations. Our practical approach maximizes existing protection capabilities, expanding them as required through skilled development and integration of information security technologies.

Contact Information:
Communications Department
Security Methods Inc.
11350 Random Hills Road
Suite 800
Fairfax, Virginia 22030
(t) 703-831-4151
(f) 703-637-1148
www.securitymethods.com

###