Scammers are trying to use the confusion with "Patch Tuesday" to coax users into handing over their e-mail address and passwords. These phishing emails attempt to convince users into visiting a website masquerading as a Microsoft Exchange system. Marks are told they must provide the details to get an installer package supposedly needed after a failed Outlook security update.

The phishing text reads:

Windows Installer package update is required to automatically eliminate obsolete patches in your sequence of patches as a report on our server indicates an error code (0x700) as a result of a failed update Every installer sequence patch is being linked to an email account. Fill in the error code and other details to automatically fix this error.

This week's phishing email was capture by Sophos' spam filters. A blog post by the security biz, featuring screenshots of these emails as well as the bogus Exchange web server, can be found here.