> Okay, here's the latest trick from your friendly hacking community. This is of particular interest to those who log through the firewall to use the Internet, and anyone who uses the Internet from home. This involves web browser hijacking (a relatively easy thing to do) and presenting a false Microsoft download page with information about a critical patch which should be applied immediately. Instead of a patch, what you will be downloading is malicious code which will install a back door onto your system and allow the web page author to enter and take control of your machine at his/her leisure.
>
> This is as good an opportunity as any to remind you that all upgrades/patches to any of the company machines are typically by request only, that is, Microsoft will never make any attempt to contact individual users to inform them of a patch. I routinely schedule the installation of any Microsoft patches which your machine may require, and should you ever be offered a software patch which you didn't specifically request (through the Windows Update page for example), you should exit out of that web browser window as quickly as possible. Full details of this exploit can be seen by clicking on the link below.
>
> http://searchwin2000.techtarget.com/originalContent/0,289142,sid1_gci878795,00.html?2
