In my inbox today, I found a very official-looking message puporting to be from Microsoft. It reads:

Microsoft Partner
this is the latest version of security update, the "November 1995, Cumulative Patch" update which resolves all known security vulnerabilities affecting MS Internet Explorer, MS Outlook and MS Outlook Express. Install now to protect your computer from these vulnerabilities, the most serious of which could allow an malicious user to run executable on your system. This update includes the functionality of all previously released patches.

System requirements         Windows 95/98/Me/2000/NT/XP
This update applies to         MS Internet Explorer, version 4.01 and laterMS Outlook, version 8.00 and laterMS Outlook Express, version 4.01 and later
Recommendation        Customers should install the patch at the earliest opportunity.
How to install        Run attached file. Choose Yes on displayed dialog box.
How to use        You don't need to do anything after installing this item.

Microsoft Product Support Services and Knowledge Base articles can be found on the Microsoft Technical Support web site. For security-related information about Microsoft products, please visit the Microsoft Security Advisor web site, or Contact Us. Thank you for using Microsoft products. Please do not reply to this message. It was sent from an unmonitored e-mail address and we are unable to respond to any replies. The names of the actual companies and products mentioned herein are the trademarks of their respective owners.

There is an attachment: Q272333.exe which I had Norton AV scan. And guess what? Norton says:

Virus "W32.Swen.A@mm" found.

BASTARDS! And I was so looking forward to a patch that "resolves all known security vulnerabilities"! Be ever alert, folks.

Cheers,
Michael