New malware campaign has started to spread as many users have reported that they received an email from a fake Microsoft address that encourages them to download and install a critical Windows 10 update.
Windows 10 update malware
An eagle-eyed security company spotted the scam, and a report has been elaborated. The subject of the mail will include clickbait-type phrases like ‘’Install Latest Microsoft Update Now’’ or ‘’Critical Windows Update!’’. Within the message, there is a single line of text which explains that users should download an attached executable file and run it on their machine.
If you receive such an email, it is advised to report the address and delete it as fast as possible. It is essential to keep in mind that Windows will never send update notices via email.
This one is an old trick
The attachment that accompanies the email is, in fact, an executable .NET file disguised as JPEG so your antivirus cannot spot it directly. By running this executable, a program called itcoingenerator.exe will be downloaded on your machine. Instead of offering access to wealth, the additional executable hides a nefarious secret: it is high-power ransomware know as Cyborg.
Cyborg will encrypt all the files that can be found on the HDD, changing their extensions to 777. A text file placed on your desktop will promise that you can unlock the data in exchange for a high price. There are four versions of this virus, and further analysis revealed that it was made or released from Russia.
The Windows 10 update scam is still making victims
It is quite odd to see email scams in 2019, but some new users may be fooled by the claims and end up infecting their machine without even thinking that they are doing something wrong. The malware can link itself to other emails and reach additional contact, a trait that makes it very dangerous.
Any emails that come with a shady or questionable subject should be deleted directly since it is likely that they are a scam or regular spam. The same applies to this Windows 10 update scam.