Microsoft Warns of Fake WinLogon Service Patch

Attackers have returned with a three-year old strategy, which was employed by an e-mail worm, to persuade users to access dubious links.


According to ZDNet Australia, Microsoft is investigating an e-mail that appears to be a security warning from the software behemoth which patches a vulnerability in the "WinLogon Service".

The Redmond company advises users to ignore the e-mail, because the vulnerability doesn't exist.

In 2003, the worm known as Swen and Gibe.F tricked the users into accessing a fake security update via an e-mail that looked as if it had been sent by Microsoft.

Microsoft usually releases security bulletins in the second Tuesday of every month, most of the time, these being automatically detected by the components included in the Windows XP OS.

It's worth noticing that the software giant never sends e-mails to inform users about security vulnerabilities in its products.