BEWARE: Malware posing as Windows product activation
On an entry posted on the Windows Genuine Advantage blog, the WGA team warned of a trojan posing as a Windows product activation dialog. It targets all flavors of Windows XP.
The trojan is Trojan.Kardphisher [Symantec]. When the dialog is displayed, it asks for your credit card information, which if you do not provide (by pressing Cancel), your computer will be shutdown immediately.
While not a technically sophisticated approach, this Trojan relies on a social engineering tactic to trick consumers into providing credit card and other personal data. Because of situations like this Microsoft recommends that people be very cautious about revealing personal and financial information online. When in doubt, customers can learn more about our activation and validation programs at Microsoft.com (www.microsoft.com/genuine or www.microsoft.com/howtotell ) or call Microsoft’s customer service line directly (800) MICROSOFT (642-7676). You can also head over to www.microsoft.com/protect, which includes info on how to protect yourself from this type of online threat.