SANS is warning of a fake Microsoft Security Bulletin that is making the rounds by email.

The email claims to come from Microsoft and includes a link to what is supposed to be a patch for the issue however it is actually a malicious browser add-on (BHO.)

Always remember that you shouldn’t click on links or open email attachments if you are not expecting the email and know and trust the sender. It’s always advisable to directly visit web sites, instead of clinking on a link in an email, to confirm that the information in that email is correct.

[Fake Microsoft Security Bulletin -> Malicious Browser Add-On]

[tags]microsoft update, microsoft windows update[/tags]