SurfControl Warns Internet Users of a Malicious Trojan
Hidden Inside Spoofed Microsoft E-mail Message

Scotts Valley, Calif. (October 17, 2006) – SurfControl (LSE: SRF), a leading provider of global on-demand, network and endpoint IT security solutions, is currently tracking a malicious Trojan Downloader concealed in a spoofed e-mail message claiming to be from Microsoft. The e-mail appears to come from [email protected], and offers recipients a link to download Release Candidate 1 of Microsoft Internet Explorer 7.

When users click on the link provided in the spoofed e-mail, a Web site launches that looks very similar to a legitimate Microsoft page. However, the Web site is fraudulent and installs a Trojan via a browser exploit targeted at Internet Explorer and effectively creates a backdoor on the infected system.

more:
http://www.surfcontrol.com/ViewHandl...d=3521&mid=161