Spammers target those that are concerned with computer security. New spam messages appeared just few days ago. This time you get an email from Microsoft that has a ‘security update’ attached or links to the patch. According to Symantec, the attachment is a Trojan.Dropper that can be executed by opening the attachment or visiting the offered website. Sometimes the malware can be activated just by opening the spam email message.
It’s better to keep all the software on a computer up-to-date to avoid security flaws. However if you download the updates manually, make sure you get them from the vendors website and not from some malicious fake page. It’s also better not to open email messages and attachments that came from unknown sources.