ZDNet UK


Skip to Main Content

ZDNet.co.uk - Winner of Best Business Website 2007
  1. Home
  2. News
  3. Blogs
  4. Reviews
  5. Jobs
  6. Resources
  7. Community
  8. My ZDNet

 

ZDNet UK RSS Feeds


Security threats Toolkit

Linux under threat from 'security update'

Munir Kotadia ZDNet Australia

Published: 25 Oct 2004 10:45 BST

  • Email
  • Trackback
  • Clip Link
  • Print friendly
  • Post Comment

Linux maker Red Hat is warning users about an email that pretends to be an official security advisory but is actually a phishing-type scam that contains links to malicious code.

The fake email appears to have been sent from "security@redhat.com" and was first spotted on Friday evening with a subject line: "RedHat: Buffer Overflow in 'ls' and 'mkdir'".

The email contains instructions on how to load and install a 'patch', which Red Hat warns is likely to contain malicious code.

Red Hat said its official security messages are sent from secalert@redhat.com and are digitally signed.

According to the company's Web site: "All official updates for Red Hat products are digitally signed and should not be installed unless they are correctly signed and the signature is verified."

Windows users have been successfully targeted a number of times with malware disguised as a fake 'security update'.

One of the most successful worms of 2003, Swen or Gibe.F, was disguised as a Microsoft patch to fix a flaw in Internet Explorer.

Less than four months later the tactic was tried again, but this time the Xombe or Trojan.Xombe worm, posed as a critical update for Windows XP.

The most recent attempt to fool Windows users was the Sober.D worm that masqueraded as a fix for the MyDoom worm. Munir Kotadia reported from Sydney for ZDNet Australia. For more ZDNet Australia stories, click here.

  • Email
  • Trackback
  • Clip Link
  • Print friendlyPrint with Konica

Did you find this article useful?
118 out of 242 people found this useful


In association with Intel

Talkback

Post a comment


Full Talkback thread

3 comments

  1. Amazing how you need to bring Windows into the art... Shawn C
  2. Oh get real! If we are looking at market sha... Andrew
  3. Why are open source partisans always so... Tomas McGuinness

Related Links

More In Security threats


Company/Topic Alerts

Create a new alert from the list below:




Related Jobs

Platform Support Engineer - Outside Broadcast

2nd Line Support/Windows XP, Southampton

Applications Support Manager : .net code fix : Liverpool : 33,000

Sentry Posts Blog

Virtual Teams: Small Business Innovati...

Virtual Teams: Small Business Innovation Author: Eric Everson, Founder – MyMobiSafe.com As the founder of MyMobiSafe.com, I’ve found that because of our presence in the industry... More

Post a comment

Mobile Security and Innovation: An Ope...

Mobile Security and Innovation: An Open Case Author: Eric Everson, Founder MyMobiSafe.com The times are changing in the mobile industry as “big wireless” in the US Markets are calling... More

Post a comment

Government launches new e-crime unit

Ok, so this is outside of my main area of focus of sustainable and green tech but I do track some security issues too. I was at a meeting last week with Microsoft's security advisor... More

Post a comment

Featured Oracle Resources

Human Resources Management eBook

Supply Chain Management eBook

Design and Innovation Report

Economist Intelligence Unit Report - Technology and growth at mid-sized companies

See All White Papers