Phishing attack promises a free version of Windows 8

Graham Cluley
Graham Cluley
@[email protected]

On Friday, Microsoft launched Windows 8 to consumers.

Today, the experts at SophosLabs have intercepted a phishing attack which plays upon interest in the new operating system.

Here is an example email, pretending to come from “Microsoft Windows 8 Team”, that was caught in our traps:

Windows 8 phishing email

Sign up to our free newsletter.
Security news, advice, and tips.

This message is sent to you because, you are a member of the Microsoft window vital user, to Get the new Window 8 freely and fully protected,
click the below Microsoft Window 8 premium link and submit, your info on the webpage and click update.

Window 8 Update

(c) 2012 Microsoft Corporation

Microsoft Window 8 Team.

Clearly the cybercriminals aren’t wasting any time.

Fortunately, it’s hardly the most sophisticated attack in the world, but the offer of some brand new software for free may be enough to trick some people into clicking on the link.

And if you were to click on the link then you would be taken to a webpage hosted on a Slovakian web server which asks you to enter your username, password, email address and server domain name.

Windows 8 phishing website

If you’re careless, you could have just handed over the keys to your castle to a bunch of cybercriminals.

If you can’t trust yourself – or (perhaps more importantly) the users in your company – not to click on links like this then it might be wise to invest in a security solution that can protect you against email and other internet attacks.

If you are considering adopting Windows 8, check out Sophos’s top eight security tips for Windows 8.

Graham Cluley is an award-winning keynote speaker who has given presentations around the world about cybersecurity, hackers, and online privacy. A veteran of the computer security industry since the early 1990s, he wrote the first ever version of Dr Solomon's Anti-Virus Toolkit for Windows, makes regular media appearances, and is the co-host of the popular "Smashing Security" podcast. Follow him on Twitter, Mastodon, Threads, Bluesky, or drop him an email.

What do you think? Leave a comment

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.