If you happen to be a government contractor, do be on the alert as a fake Windows updater is making its rounds, targeting such contractors in an attempt to pilfer sensitive data without anyone knowing about it. A couple of security companies has released a joint statement, describing an ongoing series of attacks that target government contractors which have been happening since at least early 2009. Vendors Seculert and Zscaler claim that such attackers are sending firms phishing e-mails that contain (obviously) fake invitations to conferences, and most of these invites are in the form of PDF files which will take advantage of the security loopholes which are available in Adobe Reader. The file will get to work by installing an “MSUpdater” Trojan which looks like a legitimate Windows Update process, but behind the facade lies a remote access tool which is capable of stealing information from a company’s network – as long as the breach remains well hidden.
The report further states, “Foreign and domestic (United States) companies with intellectual property dealing in aero/geospace and defense seem to be some of the recent industries targeted in these attacks.” It is always better to remain cautious at all times, and prevention is always the preferred route than cure in all situations in life – don’t you think so?