Microsoft released the following emergency bulletin regarding the “Flame” malware:
Microsoft Emergency Bulletin: Unauthorized Certificate used in “Flame”
“Microsoft just released an emergency bulletin, and an associated
patch, notifying users of Windows that a “unauthorized digital
certificates derived from a Microsoft Certificate Authority” was used
to sign components of the “Flame” malware.”
I recommend that you download and apply any high-priority patches that your Windows operating system identifies as being outstanding. One of them will have to do with revocation of certificate authority. That is technospeak for fixing a bad security hole that has been exploited by the makers of the “Flame” malware, which is extremely sophisticated and dangerous. They’ve actually used a valid Microsoft security certificate to fool target computers into thinking a portion of “Flame” is certified by Microsoft, so the target computers let down their guard entirely. The patch from Microsoft closes this hole.
The patch will download and install if you go to Start > Help and Support > Keep your computer up-to-date with Windows Update, then use either the Express or regular update methods & follow the instructions there. (That’s the Windows XP version of the path; Windows 7 & other variants will have a slightly different path.) You’ll have to restart your computer after the installation.