G
Guest
Hi Folks,
I am writing because MS doesn't seem to be interested in
warning you about the fact that a valid e-mail address
that you may post in this forum will be crawled by
hackers and spammers. Hence, don't use your e-mail
address; make one up. You don't need one to receive a
reply unless you want someone to actually contact you
personally.
What happened?
Within 48 hours of posting a query about Outlook, I
received an e-mail from "MS Internet Public Assistance"
whose e-mail address
was "(e-mail address removed)". This is part of the
e-mail's text:
Microsoft Customer
this is the latest version of security update, the
"August 2003, Cumulative Patch" update which eliminates
all known security vulnerabilities affecting Internet
Explorer,
Outlook and Outlook Express as well as five newly
discovered vulnerabilities. Install now to protect your
computer
from these vulnerabilities, the most serious of which
could allow
an attacker to run executable on your system. This update
includes
the functionality of all previously released patches.
Enclosed in the e-mail was an .exe attachment. Most
likely a virus or worm. I didn't run it, of course. The
text looked unprofessional and the sender's e-mail
address was bogus. Checking the downloads on MS, there
were no "August cumulative patch" for IE etc.
What I did next?
I went to the Privacy page on MS and e-
mailed "(e-mail address removed)" which was the address
given to contact MS. All I got back was an automated
response asking me to resubmit my question or comments at
another web address.
So... rather than waste more of my time trying to contact
MS, I wanted to warn all of you about being spammed.
What should MS do?
Protect the privacy of your e-mail address! It's that
simple. Lots of other web sites or forums do it; I guess
MS couldn't be bothered. So much for their "Trustworthy
computing" slogan.
I am writing because MS doesn't seem to be interested in
warning you about the fact that a valid e-mail address
that you may post in this forum will be crawled by
hackers and spammers. Hence, don't use your e-mail
address; make one up. You don't need one to receive a
reply unless you want someone to actually contact you
personally.
What happened?
Within 48 hours of posting a query about Outlook, I
received an e-mail from "MS Internet Public Assistance"
whose e-mail address
was "(e-mail address removed)". This is part of the
e-mail's text:
Microsoft Customer
this is the latest version of security update, the
"August 2003, Cumulative Patch" update which eliminates
all known security vulnerabilities affecting Internet
Explorer,
Outlook and Outlook Express as well as five newly
discovered vulnerabilities. Install now to protect your
computer
from these vulnerabilities, the most serious of which
could allow
an attacker to run executable on your system. This update
includes
the functionality of all previously released patches.
Enclosed in the e-mail was an .exe attachment. Most
likely a virus or worm. I didn't run it, of course. The
text looked unprofessional and the sender's e-mail
address was bogus. Checking the downloads on MS, there
were no "August cumulative patch" for IE etc.
What I did next?
I went to the Privacy page on MS and e-
mailed "(e-mail address removed)" which was the address
given to contact MS. All I got back was an automated
response asking me to resubmit my question or comments at
another web address.
So... rather than waste more of my time trying to contact
MS, I wanted to warn all of you about being spammed.
What should MS do?
Protect the privacy of your e-mail address! It's that
simple. Lots of other web sites or forums do it; I guess
MS couldn't be bothered. So much for their "Trustworthy
computing" slogan.