- http://www.f-secure....7.html#00001200
May 28, 2007 ~ "...We received reports of an important update supposedly coming from Microsoft Support. Since this "update" is not part of the monthly cycle, we were of course suspicious. Looking at the e-mail, our suspicions grew due to the glaring typos and the non-Microsoft domain link... The technical jargon used, however, might confuse normal users. The sample contained in the link is now detected as Backdoor:W32/VanBot.CA since 2007-05-28_05. Updates are always good, but in this case, keep your virus definitions updated instead."
(Screenshot available at the URL above.)
