Beware of a fraudulent email purporting to be from Microsoft Digital Crimes Unit designed to trick you into installing malware on your PC.
The malware attack was spotted by online security firm Sophos which reads:
“Dear Email User,
Due to a new vulnerability which is exploited by hackers to steal your online details.
Microsoft Digital Crimes Unit in 2013 has hereby developed a new security measure.
All users of the Internet and Microsoft products are hereby required to validate there email account information irregardless of their Internet service provider or Host company.
To validate your email account and to prevent hackers from exploiting the new vulnerability.
Please download the "Microsoft_STF" file attached, extract the file on to your desktop and open.Once done you will updated on Microsoft security database.
Please note that if your email is not validated, your email will be at risk for hackers getting into your personal or business email account there by getting access to classified or privileged information.
2013 Microsoft Digital Crimes Unit”
If you download the attached "Microsoft_STF" file on your computer you will be installing a Trojan horse (Troj/Agent-AANA) according to investigations by Sophos.
Always avoid opening or installing attachments from unknown sources. If the subject is something of interest and is legitimate there will be another, safer source of information such as an official website.
Read more about the malware on the Naked Security Blog of Sophos.
Please note: Action Fraud is not responsible for the content on external websites.
If you are a victim of fraud you can call Action Fraud on 0300 123 2040 or use our online fraud reporting tool.
Related links
Beware of ‘assassin’ scam email
Tips for protecting your computer in 2013
Beware of British Airways e-ticket malware
