Outlook phish mail in the wild

Trend Micro recently blogged about rather genuine-looking phish mail which tries to make user download a trojan. After activating, trojan checks login credentials for biggest online banks and for social networking websites like YouTube, MySpace, Flickr and Facebook. It also activates when user visits those websites.

Microsoft has said years ago that they don't mail about such updates but unfortunately there are always some people who will believe in those mails. That's why all Microsoft related updates should be downloaded from Microsoft Update.